Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
309
Views
0
Helpful
3
Replies

remote access vpn with ldap

Go to solution
opnineopnine
Level 1
Level 1

‎01-12-2015 11:59 AM - edited ‎02-21-2020 08:01 PM

Hi all,

 

Im configuring  a remote access vpn with ldap, for what I see in some examples I have to create a user/pass. 

 

In my case I already configured the aaa-server to the ldap. I also have the tunnl-group with the authentication-server.

Must I create a user/pass ?

 

Thanks. 

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Julio Carvajal
VIP Alumni
VIP Alumni
In response to opnineopnine

‎01-13-2015 07:19 AM

Hello,

 

I see what you mean!

 

That is not required for the LDAP integration.

 

You are going to do the authentication with LDAP not the LOCAL database so no need for that.

 

Remember to rate all of my answers

 


Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2-CCNP, JNCIS-SEC
For inmediate assistance hire us at http://i-networks.us

 

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Julio Carvajal
VIP Alumni
VIP Alumni

‎01-12-2015 06:17 PM

Hello,

 

Not sure if I am following exactly in your question...

 

Let's say we are talking about an ASA with LDAP integration for RA VPN authentication.

 

In that case you need to have a user and password account for the ASA to be able to bind itself to the LDAP Server.

 

This account that you are going to create for the ASA should be able to do a object query into the LDAP database plus be able to create objects.

 

Does it makes sense?

 

Regards,

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2-CCNP, JNCIS-SEC
For inmediate assistance hire us at http://i-networks.us

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
0 Helpful

Go to solution
opnineopnine
Level 1
Level 1
In response to Julio Carvajal

‎01-13-2015 12:51 AM

Hello Julio,

Im working on this doc.


https://supportforums.cisco.com/document/139241/remote-access-vpn-asa-authentication-using-ldap-server

 

And as you can see its adding a user/password, that is not the same with the ldap, my questions is do I have to add this user or not?

 

thanks

0 Helpful

Go to solution
Julio Carvajal
VIP Alumni
VIP Alumni
In response to opnineopnine

‎01-13-2015 07:19 AM

Hello,

 

I see what you mean!

 

That is not required for the LDAP integration.

 

You are going to do the authentication with LDAP not the LOCAL database so no need for that.

 

Remember to rate all of my answers

 


Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2-CCNP, JNCIS-SEC
For inmediate assistance hire us at http://i-networks.us

 

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
0 Helpful
Customers Also Viewed These Support Documents