11-21-2007 10:49 AM - edited 03-10-2019 03:31 PM
I am trying to configure AAA for an SSL VPN (ASA, 8.x) to support both password management and a framed IP address. Authentication server is AD.
I can get the pw mgmt to work when using LDAP authentication against AD, and I can get the framed IP address to work with IAS (RADIUS on AD). But, I cannot get both to work at the same time with either method.
Any help appreciated.
11-27-2007 02:42 PM
The security appliance can use one or more of the following methods for assigning IP addresses to remote access clients. If you configure more than one address assignment method, the security appliance searches each of the options until it finds an IP address. By default, all methods are enabled. The following URL will help you
http://www.cisco.com/en/US/docs/security/asa/asa71/configuration/guide/vpnadd.html
http://www.cisco.com/en/US/docs/security/asa/asa71/configuration/guide/svc.html
11-28-2007 08:43 AM
You may be trying to run IAS on the same system as your LDAP. Try running IAS from a separate system and see if it works. There seems to be a problem with the calls to the AD from the IAS when they are running on the same system.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide