cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
749
Views
0
Helpful
2
Replies

Cisco VPN Concentrator and LDAP

umadsen
Level 1
Level 1

I have a simple question:

Can the VPN box access LDAP for strong authentication (i.e via certificates)

I know it can for CRL but can't find any info on user authentication via LDAP.

Any info would be appreciated.

2 Replies 2

chris.garcia
Level 1
Level 1

You have to use a radius server as an intermediary to authenticate via an LDAP server. Configure the Concentrator to authenticate via the radius server. Configure the radius server to use ldap as an external database.

gonzalo.gil
Level 1
Level 1

You have 2 ways of peer authentication:

1. Digital Certificates

2. Pre-Share secrets (or Gorup password on the VPN 3K)

You also have and extension of Cisco IPSec authentication call XAUTH, what can be done via:

1. RADIUS

2. Concentrator Internal User Database

3. and some others methods

If you use a RADIUS server that support LDAP Directory Services user authentication - ie. Funk Software Radius server. should be OK.

I hope it helps.

Regards

Gonzalo