local and ldap server groups

Unanswered Question
Jul 10th, 2009
User Badges:

I currently have a number of local users on my ASA and I'm working to migrate them to ldap. I want to setup ldap so I can test it but don't want to affect the local users. What is the best approach for this?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
pompeychimes Fri, 07/10/2009 - 19:05
User Badges:
  • Bronze, 100 points or more

How about creating another context. That's if your model/code supports it.

Or do you have another ASA that you can use for testing.

One other way to test is to use Pemu.

srue Sun, 07/12/2009 - 18:39
User Badges:
  • Blue, 1500 points or more

running in multiple context mode, the asa doesn't support any VPN's.

create another tunnel-group that uses the LDAP server for authentication.

I'm attaching a document I created a while back to help with LDAP/remote vpn's on the asa.

esossamon Mon, 07/13/2009 - 13:08
User Badges:

Thank Steven,

Yes creating the new tunnel group is that what I needed to do. Thanks!


This Discussion