Hi,
I am running a ASA 5520 with remote access VPN configured with RADIUS-authentication (RSA SecureID). Now I want to create a VPN-profile that authenticates directly against my internal Kerberos/ActiveDirectory-controller to check that both the username is valid AND that the client has a valid computeraccount in AD. A couple of questions:
- What is the difference between "Cisco Anyconnect" and "Cisco Anyconnect Secure Mobility Client"?
- Is it possible to check against both username and computeraccount?
- Is there a step-by-step-guide on how to do this, which mechanisms do I have to configure on the ASA?
- Do I need special SSL-licenses for this? (today I have license for 50 SSL VPN peers)
I know that these are general quesitons but it would be nice if someone could give some hints on how to do this.
Regards,
Thor-Egil