Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3658
Views
0
Helpful
1
Replies

Anyconnect using LDAP and cached authentication credentials

Terry Pattinson
Level 1
Level 1

‎09-17-2013 11:02 AM - edited ‎02-21-2020 07:09 PM


Is there any way to cache Windows login credentials and use them to authenticate an Anyconnect VPN to an ASA with LDAP-based AAA authentication configured?

Thanks,

Terry

PS - already asked but not answered back in June 2012:

https://supportforums.cisco.com/thread/2155853

Labels:
0 Helpful
1 Reply 1

Jatin Katyal
Cisco Employee
Cisco Employee

‎09-17-2013 10:17 PM

I was going through the knowledge base and documentation. I guess An Enhancement request was opened for that matter : CSCsh20863 AnyConnect client should provide option to save username and password. Which seems that it will be not implemented because of the security implications involved with introducing such feature , so there is no way to do this.

There is other enhancement. CSCsx76993    ENH: Make Anyconnect configurable to not cache credentials

Read this from the enhancement request: Anyconnect stores username  credentials within the preferences.xml file on machines.  So when client  is relaunched, the username is populated which could be a security  risk. So, it talks about only username. Since It  already save the username so lots of other customers don't want this to happen.

We could think of SSO.Unfortunately Single Sign On only works for Clientless SSL VPN, not AnyConnect SSL VPN.

~BR
Jatin Katyal

**Do rate helpful posts**

~Jatin
0 Helpful
Customers Also Viewed These Support Documents