Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
681
Views
1
Helpful
3
Replies

AnyConnect with LDAP-S

battanc
Level 1
Level 1

‎06-18-2014 07:28 AM - edited ‎02-21-2020 07:41 PM

Cisco ASA 5515-X 

AnyConnect VPN with LDAP authentication (2 Domain Controllers).

I need to use LDAP-S to get the password-management.

At the ASA side, it is sufficient to enable LDAP over SSL.

On the Domain Controllers (2 Windows/2008) to enable LDAP-S I must use a certificate.

 

The Question is:

Can I use an "Identity Certificate" self-signed, generated on the firewall itself?

For example, the same one, used for AnyConnect clients or a new one? 

And with what parameters must I create it? 

 

Thanks,

Claudio

Labels:
0 Helpful
3 Replies 3

rizwanr74
Level 7
Level 7

‎06-22-2014 07:47 PM

Hi Battanc,

 

Yes, you can use self-signed certificate from the ASA itself.

Please check the attached doc from Cisco.

 

Thanks

 

 

 

asa8.x_anyconnect_vpn.pdf
Preview file
22 KB

battanc
Level 1
Level 1
In response to rizwanr74

‎06-23-2014 02:45 AM

However, this does NOT answer my question, that maybe it was not very clear.

The question is: can I use a "self-signed" certificate for LDAP-S ?

 

Claudio

0 Helpful

rizwanr74
Level 7
Level 7

‎06-23-2014 06:17 AM

Hi Claudio,

 

Answer is yes.

 

"Step 1. Configure a Self−Issued Certificate"

 

Thanks

0 Helpful
Customers Also Viewed These Support Documents
Top