
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-18-2015 08:22 AM
When user log into VPN, ASA is looking at CAC common Name instead of LDAP sAMAccountName for authentication. Causing errors within log in script. User cannot log into the VPN because of the issue. This is a two part problem; having a certification chaining issue, but LDAP seems to looking for common name instead of looking for LDAP name on AD
Solved! Go to Solution.
- Labels:
-
VPN
Accepted Solutions
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-18-2015 09:04 PM
In your LDAP server definition, try using something like:
aaa-server <server> (inside) host a.b.c.d
ldap-naming-attribute sAMAccountName
Failing that you'll probably need to use an attribute map.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-18-2015 09:04 PM
In your LDAP server definition, try using something like:
aaa-server <server> (inside) host a.b.c.d
ldap-naming-attribute sAMAccountName
Failing that you'll probably need to use an attribute map.
