Configuration of cut through proxy on asa using acs and an AD

Unanswered Question
Aug 15th, 2008
User Badges:


I'm using an acs engine 4.2 to authenticate http users by configuring the cut through proxy feature on an asa 5505. To authenticate the users, an external AD database is also used.

The ACS, the AD and the remote agent are in the same vlan (inside) and the ACS detects the remote agent service and the AD domain but users defined on the AD are unable to pass the authentication.

Can you please help figure out this problem

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
dhananjoy chowdhury Sat, 08/16/2008 - 11:52
User Badges:
  • Silver, 250 points or more

It would be better if you could post the relevant config.

ALso do check the following :

- On the ASA run the command to check if you are able to successfully authenticate with the ACS using AD.

"test aaa authentication cool username password "

- check the Failed attempt logs under the Reports & Activity on the ACS server.


This Discussion