Solved: 1920 router remote access vpn LDAP intergration

lcaruso · ‎10-30-2014

Hi,

What is required for a 1920 router use AnyConnect and/or also integrate with AD LDAP?

Currently, this router supports the legacy client and has these licenses:

Technology Package License Information for Module:'c1900'

-----------------------------------------------------------------
Technology    Technology-package           Technology-package
              Current       Type           Next reboot
------------------------------------------------------------------
ipbase        ipbasek9      Permanent      ipbasek9
security      securityk9    Permanent      securityk9
data          None          None           None

Does the legacy client remote access vpn integrate with AD LDAP?

Thanks.

ghostinthenet · ‎10-30-2014

As long as you're running IOS 15.3.3M3 or better, you have all of the licensing you need for AnyConnect 3.1 to run on your 1921.

The guide for connecting your router directly to LDAP can be found here:

http://www.cisco.com/c/en/us/td/docs/ios-xml/ios/sec_usr_ldap/configuration/15-mt/sec-usr-ldap-15-mt-book/sec_conf_ldap.html

Personally, I would avoid directly interfacing with LDAP because it can be a complex arrangement. While it can be done, it's simpler to have your router connect to the Microsoft Network Policy Server via RADIUS for your authentication.

View solution in original post

ghostinthenet · ‎10-30-2014

As long as you're running IOS 15.3.3M3 or better, you have all of the licensing you need for AnyConnect 3.1 to run on your 1921.

The guide for connecting your router directly to LDAP can be found here:

http://www.cisco.com/c/en/us/td/docs/ios-xml/ios/sec_usr_ldap/configuration/15-mt/sec-usr-ldap-15-mt-book/sec_conf_ldap.html

Personally, I would avoid directly interfacing with LDAP because it can be a complex arrangement. While it can be done, it's simpler to have your router connect to the Microsoft Network Policy Server via RADIUS for your authentication.