cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1380
Views
0
Helpful
5
Replies

ASA "AD Integration" - where to start

PAUL TRIVINO
Level 3
Level 3

I have been tasked with getting so that our ASA rules have visibility to what user is hitting a rule (not necessarily to enforce rules that way, yet).  I am not sure where to even start this process.

I see the "Identity Options" policiy in CSM, which I am guessing is where to configure this, but I have no idea of the overall process.  Anyone have a suggestion as to where to start, and/or if there is an overview document somewhere?

 

 

1 Accepted Solution
5 Replies 5

Karsten, thanks.  Those look like good links (they *work*, for sure...;^) and will be useful.  I'll come back and mark this Correct as soon as I read them.

Thanks again.

Karsten, one thing we'll want is to test first, of course - do you happen to know if I can then specify "Any" for User/Group in a rule, and have the UserID and/or Group be in the log messages? 

 

Thanks again.

"any" user or group is the default for all ACEs. When you configure the identity-firewall you don't need to change your rules directly. If the ASA knows the user-mapping, it will show this in the logs.

Excellent, thanks.

Review Cisco Networking for a $25 gift card