remote vpn authentication

zeuscyril · ‎03-15-2011

hi all,

how i can use both LDAP Authentication and local user database to authenticate the remote vpn clinet in asa 5505?

when i try to do the things either only one method is working both are not working at a time.

help me in this matter

thanks

cyril

Yudong Wu · ‎03-15-2011

I don't think you can do that.

ASA will check the second one unless the first one is not response to the authentication request.

So, you might have to create another tunnel-group which will use local authentication only and user have to pickup which tunnel -group to use depended on how it will be authenticated.

andamani · ‎03-16-2011

Hi,

If you are trying to do double authentication with IPsec VPN client then it is not supported.

Double authentication with the Anyconnect client is supported.

http://www.cisco.com/en/US/docs/security/asa/asa82/configuration/guide/vpngrp.html#wp1243545

Hope this helps.

Regards,

Anisha

P.S.: please mark this post as answered if you feel your query is resolved. do rate helpful posts.

srikanthmavelikara · ‎03-30-2012

Hello Anisha,

I am having the query on the same.

Double authentication in vpn means authuthentication in both ways ( eg: local & ldap).

Whether it is supported for IPSec remote access VPN on Cisco ASA 5540 with ios version 8.0(4).?

Either it is supported on any other versions..?

Kindly do help me to get the info..it would be very much grateful.

Sri