04-13-2013 10:24 PM
hi all,
i bought recently a new asa 5515x, i'm also new to it especially if i can have user login to internet before they can use the internet. my 5515 security license is a plus license. and also if that user management can be integrated with active directory 2008 r2.
thanks for any comment you may add.
Solved! Go to Solution.
04-13-2013 11:45 PM
You can enable the Cut-Through-Proxy functionality on the ASA for http/https to authenticate the users:
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00807349e7.shtml
Sent from Cisco Technical Support iPad App
04-14-2013 09:48 AM
The ASA should be able to talk to your AD via either LDAP or Kerberos..
And yes, you need the CX to perform content filtering on the ASA itself, or you can look at the Ironport appliances or Cloud Web Security (scansafe) fir additional filtering options
Sent from Cisco Technical Support iPad App
04-13-2013 11:45 PM
You can enable the Cut-Through-Proxy functionality on the ASA for http/https to authenticate the users:
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00807349e7.shtml
Sent from Cisco Technical Support iPad App
04-14-2013 08:50 AM
i appreciated this, thanks!
of course there's a solution to use LDAP or kerberos right?
and if i need a functionality like websense, i need additional software like CX Context-Aware Security?
04-14-2013 09:48 AM
The ASA should be able to talk to your AD via either LDAP or Kerberos..
And yes, you need the CX to perform content filtering on the ASA itself, or you can look at the Ironport appliances or Cloud Web Security (scansafe) fir additional filtering options
Sent from Cisco Technical Support iPad App
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide