Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
393
Views
0
Helpful
3
Replies

LDAP integration with Active Directory for Remote Access

Mohammed Yusuf
Level 1
Level 1

‎05-01-2015 12:57 AM - edited ‎03-11-2019 10:52 PM

Hi Guys,

 

I managed to configure Active directory for VPN users. I could only map OU on base DN and subtree for authentication but I could not map the VPN security group I created for it.

Is there anything I missed or does it only allow OU not security group? 

Labels:
0 Helpful
3 Replies 3

Vibhor Amrodia
Cisco Employee
Cisco Employee

‎05-01-2015 07:44 PM

Hi,

I think this would answer your query:-

http://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/91831-mappingsvctovpn.html

Thanks and Regards,

Vibhor Amrodia

0 Helpful

Mohammed Yusuf
Level 1
Level 1
In response to Vibhor Amrodia

‎05-02-2015 08:03 AM

It does not answer my question. Thanks :)

0 Helpful

Vibhor Amrodia
Cisco Employee
Cisco Employee
In response to Mohammed Yusuf

‎05-02-2015 07:59 PM

Hi Yusuf,

No Problem.

To match the Security groups on the AD , you have to create a DAP policy for it.

In that , you have to use the "ldap.memberOf" attribute to map the security group.

http://www.cisco.com/c/en/us/td/docs/security/asa/asa84/asdm64/configuration_guide/asdm_64_config/vpn_asdm_dap.html

Thanks and Regards,

Vibhor Amrodia

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card