10-10-2007 09:15 AM
Iv'e got ans ASA 5510 running 7.2.3 code. Currently, users connect to the ASA using the ssl vpn client and authenticate using the windows domain controller. This all works fine.
But now I have a request to provide a user access to a single server on our inside network. This is not an employee, so there is no domain user account. I tried creating a user account locally on the ASA, but apparently, the ASA only checks the local user database if it cannot reach the domain controller.
Any suggestions? I haven't been able to find and config examples on CCO.
10-11-2007 01:40 AM
You must configure one more Virtual Context (webvpn context $name$) with other aaa parameters
10-11-2007 06:57 AM
Hi,
Why make it difficult. You can still create the user in AD but in ASA ACL/ACE give him access only to one server. Having account in AD only for AAA doesn't give the user access to the entire domain.
Regards,
Dandy
11-14-2007 06:17 AM
Hi All,
Does anyone have any config examples of setting up webvpn users? Im a complete newbie at this!!...
question: can u restrict access by incoming IP for webvpn users ??
hope you can help....
12-04-2007 05:30 PM
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: