Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
546
Views
0
Helpful
2
Replies

ASA -->ldap --> AAA-Server, through VPN tunnel - not working

robertblasey
Level 1
Level 1

‎04-15-2009 12:25 AM - edited ‎03-10-2019 04:26 PM

Hi everybody -

we are implementing AAA authentication via LDAP directly between the ASA an our Microsoft DCs - works wonderfull.

What I dont seem to get to work is the LDAP-communication if I try to reach the AAA Server through a Site-2-Site VPN tunnel.

What interface do I choose? Is this at all possible? Anybody done this? I dont see anything in the log when I try the "Test" button to try the authentication ..

Regards

Robert

Labels:
0 Helpful
2 Replies 2

srue
Level 7
Level 7

‎04-15-2009 06:21 AM

make sure the interface that the vpn terminates on is included in the crypto acl along with the aaa-server.

0 Helpful

robertblasey
Level 1
Level 1
In response to srue

‎04-16-2009 06:00 AM

I dont get "..interface [...] included in the crypto acl" - lets say the public ip of my outside interface were my Site-2-Site Tunnel terminates should be included in the crypto ACL ????

sorry

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents