Solved: webVPN and active directory - Cisco Community

341

Views

0

Helpful

2

Replies

I have a 5515 ASA that has the webVPN configured on it and it is using active directory to authenticate. The client would like to set up groups in active directory and restrict access to those groups when they are connected to the webVPN. For example, they have a group in active directory that they only want to access their "web" interface. What is the best way to configure this on the asa? Thanks!

1 Accepted Solution

Accepted Solutions

Hello Benjamin,

You can accomplish this using LDAP authentication with attribute mapping and to be honest with you . It's really easy to accomplish:

ttp://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00808d1a7c.shtml

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00808c3c45.shtml

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a008089149d.shtml

I think those links should do it, let me know what you think

Regards,

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC

View solution in original post

2 Replies 2

Anyone have any ideas on this?

Hello Benjamin,

You can accomplish this using LDAP authentication with attribute mapping and to be honest with you . It's really easy to accomplish:

ttp://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00808d1a7c.shtml

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00808c3c45.shtml

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a008089149d.shtml

I think those links should do it, let me know what you think

Regards,

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC

Review Cisco Networking products for a $25 gift card