Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
11442
Views
10
Helpful
3
Replies

How to configure ASDM/HTTP access for Cisco ASA firewall

Go to solution
kevin.woodhouse
Level 1
Level 1

‎10-01-2013 07:55 AM

Hi All,

I'm looking for a solution / guide that will enable our ASA 5510, Firewall V8.4(5), ASDM version 6.4(9) to support Active Directory users. I want to enable our administrators to access the ASA via ASDM using their AD accounts (A local admin account will also exist but not a general knowledge password)

Would anyone be abe to advise on a guide / Solution.

Many Thanks      

1 person had this problem
Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Jeet Kumar
Cisco Employee
Cisco Employee

‎10-01-2013 12:36 PM

If understood you issue correctly you want tpo enabled AD authention for HTTP/ASDM access to the ASA. If that is correct than you needed the following command using the CLI to enable that

ASA-32-22(config)# aaa authentication http console ?

configure mode commands/options:

  LOCAL  Predefined server tag for AAA protocol 'local'

  WORD   Name of RADIUS or TACACS+ aaa-server group for administrative

         authentication

After the console you needd to defind the name of the AD server you have configured on the ASA.

YOu can do the same using ASDM:

Change from LOCAL to the AD listed there.

I hope this answers your question.

Thanks

Jeet Kumar

View solution in original post

Go to solution
npokhriy
Level 1
Level 1

‎10-01-2013 12:56 PM

Hi Kevin,

Jeet is right.

Using CLI, you can configure following commands:-

If you want to access it from inside:- http 0.0.0.0 0.0.0.0 inside

If you want to access it from outside:- http 0.0.0.0 0.0.0.0 outside

aaa autheitncation http console

Regards,

Naresh

View solution in original post

3 Replies 3

Go to solution
Jeet Kumar
Cisco Employee
Cisco Employee

‎10-01-2013 12:36 PM

If understood you issue correctly you want tpo enabled AD authention for HTTP/ASDM access to the ASA. If that is correct than you needed the following command using the CLI to enable that

ASA-32-22(config)# aaa authentication http console ?

configure mode commands/options:

  LOCAL  Predefined server tag for AAA protocol 'local'

  WORD   Name of RADIUS or TACACS+ aaa-server group for administrative

         authentication

After the console you needd to defind the name of the AD server you have configured on the ASA.

YOu can do the same using ASDM:

Change from LOCAL to the AD listed there.

I hope this answers your question.

Thanks

Jeet Kumar

Go to solution
npokhriy
Level 1
Level 1

‎10-01-2013 12:56 PM

Hi Kevin,

Jeet is right.

Using CLI, you can configure following commands:-

If you want to access it from inside:- http 0.0.0.0 0.0.0.0 inside

If you want to access it from outside:- http 0.0.0.0 0.0.0.0 outside

aaa autheitncation http console

Regards,

Naresh

Go to solution
kevin.woodhouse
Level 1
Level 1
In response to npokhriy

‎10-02-2013 12:03 AM

Thanks to both of you for the above information. Very much appreciated. Thats exactly what I need.

0 Helpful
Customers Also Viewed These Support Documents