Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1089
Views
0
Helpful
4
Replies

VPN LDAP auth when AD server over L2L

Stuart-ITGL
Level 1
Level 1

‎02-28-2020 08:31 AM

I have an ASA5512 with an AnyConnect profile using LDAP to carry out authentication of users to a local AD server.

This server is being migrated up to the cloud and shut down.

There is a Site-to-Site VPN from the ASA to the cloud but I'm struggling on getting the ASA to use the cloud AD through the VPN.

aaa-server OUR-CLOUD-AD (outside) host 10.254.x.x

Whenever I try to do a test auth to the cloud it fails with Server not responding.

Any advice or things I need to do?  

TIA

 

0 Helpful
4 Replies 4

Rob Ingram
VIP
VIP

‎02-28-2020 08:42 AM

Hi,
The source of this traffic would be the ASA's outside interface IP address, is that included in the crypto ACL used for VPN tunnel?

HTH
0 Helpful

Stuart-ITGL
Level 1
Level 1
In response to Rob Ingram

‎03-02-2020 01:26 AM

Ahh okay I didn't realise that.

 

No it isn't included in the crypto acl yet but I'll add that in and feedback.

 

Thanks :)

0 Helpful

Stuart-ITGL
Level 1
Level 1
In response to Stuart-ITGL

‎03-02-2020 02:09 AM

Unfortunately that didn't work and also had unintended knock-on effect to a remote office who use a L2L as well.

Still fails with the same error: Server not responding
0 Helpful

Cristian Matei
VIP Alumni
VIP Alumni
In response to Stuart-ITGL

‎03-03-2020 11:36 AM

Hi,

 

  Can you post your VPN and NAT configuration?

 

Regards,

Cristian Matei.

0 Helpful
Customers Also Viewed These Support Documents