Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1882
Views
0
Helpful
3
Replies

Active Directory integration with VPN

upen desai
Level 1
Level 1

‎07-02-2013 04:13 AM

Hi

sorry if this question has already been raised, but we use Clientless SSL vpn on the ASA 5550.

I wanted to have active directory integrated to authenticate the VPN sessions.

Can you please advice how best to setup the server details and the LDAP query for this.

many thanks

Labels:
0 Helpful
3 Replies 3

pankaj29in
Level 1
Level 1

‎07-02-2013 05:19 AM

Hi Upen,

As per my knowledge i have used ACS server to do the same, i am not sure about Cisco ASA 5550

it might be having some options in Configuration --> Remote Access VPN --> AAA/Local Users --> AAA Server Groups.

Check it out also let me know.

Regards

Pankaj

0 Helpful

Jatin Katyal
Cisco Employee
Cisco Employee

‎07-02-2013 05:46 AM

Hi Upen,

You can use the below listed configuration to integrate ASA with AD using LDAP protocol.

aaa-server LDAP-AD protocol ldap

aaa-server LDAP-AD host

server-port 389

ldap-base-dn

ldap-scope subtree

ldap-naming-attribute sAMAccountName

ldap-login-dn

ldap-login-password

server-type microsoft

!

!

! \\ Test the authentication with the help of below listed command\\

     test aaa authentication LDAP-AD host

     username: *******

     pasword : ********

     If you see authentication successful, you may define the server under the tunnel-group.

!

!

tunnel-group type remote-access

tunnel-group general-attributes

authentication-server-group LDAP-AD

Let me know how it goes.

~BR
Jatin Katyal

**Do rate helpful posts**

~Jatin
0 Helpful
Customers Also Viewed These Support Documents