Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
740
Views
35
Helpful
3
Replies

How can change RAS to LDAP ASA for anyconnect users for bypass otp

Go to solution
man05681
Level 1
Level 1

‎02-04-2022 01:05 AM

I have configured anyconnect on the ASA AD server having some issue with MFA. i am looking for help to put it into the open LDAP so user can connect VPN without OTP.

 

thanks,

Man

1 Accepted Solution

Accepted Solutions

Go to solution
Jitendra Kumar
Spotlight
Spotlight

‎02-04-2022 02:15 AM


ASA#show run tunnel-group anyconnect
authentication-server-group RAS

ASA(Config t)# no authentication-server-group RAS
ASA(Config t)#authentication-server-group LDAP

if not created LDAP then please add them and do the same thing.


Thanks,
Jitendra

 

Thanks,
Jitendra

View solution in original post

3 Replies 3

Go to solution
Rob Ingram
VIP
VIP

‎02-04-2022 01:08 AM

@man05681 you need to define the LDAP server, then reference the LDAP server group under the tunnel-group. Example here.

Go to solution
Jitendra Kumar
Spotlight
Spotlight

‎02-04-2022 02:15 AM


ASA#show run tunnel-group anyconnect
authentication-server-group RAS

ASA(Config t)# no authentication-server-group RAS
ASA(Config t)#authentication-server-group LDAP

if not created LDAP then please add them and do the same thing.


Thanks,
Jitendra

 

Thanks,
Jitendra

Go to solution
man05681
Level 1
Level 1
In response to Jitendra Kumar

‎02-04-2022 02:42 AM

Thanks for perfect answer.

Customers Also Viewed These Support Documents