ASA Cut through proxy configuration

Unanswered Question
Jan 12th, 2009

Hi guys,

I would like to configure limited internet access to olnly a select group of Windows AD users.

I beleive cut-through proxy will allow me to do this, just not sure how to configure it on a Cisco ASA-5510

thanks

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Ivan Martinon Mon, 01/12/2009 - 15:12

The link given will definitely work however you would not be able to select access based on the AD group, if that is what you need to achieve and you have ASA version 8.0 you can work Cut-Through-Proxy together with DAP.

Using Cut-Trough-Proxy with a standard authentication server will only allow or reject depending on the authentication result, but any user within your AD schema will be able to get internet access. If you need to restrict this based o Windows Groups as well your best shot is Cut-Through-Proxy with DAP and LDAP:

http://www.cisco.com/en/US/products/ps6120/products_white_paper09186a00809fcf38.shtml

vlmacko Tue, 11/09/2010 - 04:16

Hi Ivan,

could you please give any suggestion about usage cut-through-proxy and DAP with LDAP together ?

any function config or any document on web ?

link you specified was just about DAP and there is no specified how it is possible join cut-through-proxy and DAP.

Thanks a lot,

Vladimir

josedunet Wed, 11/09/2011 - 04:17

Hi Ivan,

We cannot access to the doc on the link.

Can you help us ?

Thanks in advance.

Actions

This Discussion