Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1299
Views
5
Helpful
2
Replies

Case-Sensitive logon with ASA and LDAP

Tameem Hourani
Level 1
Level 1

‎02-06-2013 05:51 PM

I am doing LDAP authentication using my ASA and everything works great.  I have set my max similtanious connections per user to 1, and this doesnt exactly work 100%.  My problem is that, if the username for example is "fred"; "fred" can only have one session, but if I user "Fred", I can have a second session because the ASA sees it as a second user.  So I could have many more sessions if I use "Fred","fRed","frEd","freD", etc..  How do I force the logon to LDAP to be case-sensitive?

Thanks!

1 person had this problem
Labels:
0 Helpful
2 Replies 2

Moin Qaimkhani
Level 1
Level 1

‎02-21-2013 12:11 AM

Hi Tameem,

Did you get to bottom of this issue?
We have exactly same issue but havnt found its solution yet, A simple temp fix is if you change all your UIDs to numbers only, eg 1211. But unfotunately this is not the option in our case. we can not change user IDs.
please let us know if you come accross any solution for that.

olpeleri
Cisco Employee
Cisco Employee

‎02-21-2013 12:35 AM

Hello,

That reminds me a old bug

CSCsz21934    ASA AAA should  treat RA username as case-insensitive

http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCsz21934

Looks like you need to upgrade if you wanna get rid of it

Cheers,

Olivier

0 Helpful
Customers Also Viewed These Support Documents