Buy or Renew
Buy or Renew
NOTICE: You can now engage in the community. Learn about the great new Cisco Umbrella content.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
318
Views
0
Helpful
1
Replies

web authentication for admission

wsmith@ca.ibm.com
Level 1
Level 1

‎12-07-2010 10:45 AM - edited ‎03-11-2019 12:19 PM

Hello All

I have a group of users connected to our network that I need to authenticate.  These users are all on an easily identified subnet.

There's also servers on the 'other side' that we allow.

Currently we use ACLs on a 6509 switch.. where each of these special users has a static IP

What I'd like to do is put an ASA or other device in place such that the end users on the 'other side' must do a web based authentication.

I don't want any vpn/ipsec/tunneling ... just a simple authentication.

This is similar to the auth-proxy function in a Router. 

I thought we could do this on an ASA, but can't find it in the doc.

I'm also considering using web-auth on the 3560/4948.6509 switch.

Appreciate any suggestions

Thanks in advance

Wes

Labels:
0 Helpful
1 Reply 1

Panos Kampanakis
Cisco Employee
Cisco Employee

‎12-07-2010 12:36 PM

The ASA can do it and it is called cut through proxy this time. Here is a sample config http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00807349e7.shtml

Like you said, web-auth/auth-proxy can be considered on the switch http://www.cisco.com/en/US/products/sw/secursw/ps1018/products_configuration_example09186a008009466e.shtml

I hope it helps.

PK

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card