ASA Cut through proxy configuration

Unanswered Question
Jan 12th, 2009
User Badges:

Hi guys,

I would like to configure limited internet access to olnly a select group of Windows AD users.

I beleive cut-through proxy will allow me to do this, just not sure how to configure it on a Cisco ASA-5510


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Ivan Martinon Mon, 01/12/2009 - 15:12
User Badges:
  • Cisco Employee,

The link given will definitely work however you would not be able to select access based on the AD group, if that is what you need to achieve and you have ASA version 8.0 you can work Cut-Through-Proxy together with DAP.

Using Cut-Trough-Proxy with a standard authentication server will only allow or reject depending on the authentication result, but any user within your AD schema will be able to get internet access. If you need to restrict this based o Windows Groups as well your best shot is Cut-Through-Proxy with DAP and LDAP:

vlmacko Tue, 11/09/2010 - 04:16
User Badges:

Hi Ivan,

could you please give any suggestion about usage cut-through-proxy and DAP with LDAP together ?

any function config or any document on web ?

link you specified was just about DAP and there is no specified how it is possible join cut-through-proxy and DAP.

Thanks a lot,


josedunet Wed, 11/09/2011 - 04:17
User Badges:

Hi Ivan,

We cannot access to the doc on the link.

Can you help us ?

Thanks in advance.


This Discussion