04-15-2009 12:25 AM - edited 03-10-2019 04:26 PM
Hi everybody -
we are implementing AAA authentication via LDAP directly between the ASA an our Microsoft DCs - works wonderfull.
What I dont seem to get to work is the LDAP-communication if I try to reach the AAA Server through a Site-2-Site VPN tunnel.
What interface do I choose? Is this at all possible? Anybody done this? I dont see anything in the log when I try the "Test" button to try the authentication ..
Regards
Robert
04-15-2009 06:21 AM
make sure the interface that the vpn terminates on is included in the crypto acl along with the aaa-server.
04-16-2009 06:00 AM
I dont get "..interface [...] included in the crypto acl" - lets say the public ip of my outside interface were my Site-2-Site Tunnel terminates should be included in the crypto ACL ????
sorry
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: