Cisco VPN computer account authentication

Unanswered Question
Apr 18th, 2010

I know that you can, using webvpn, validate domain membership as a logon condition

.  However, I am wondering if you can do one step beyond that, and have radius or ldap somehow authenticate the computer account, before moving on to user authentication.  I am wondering if can be done using the standard VPN client, and/or webvpn or anyconnect.  I am not looking for certificates, and am willing to make some modifications to the client if needed.  So basically, heres what Im looking for, mainly on the webvpn:

User logs in -> prelogon check authenticates computer account in AD --> if pass, proceed to user authentic ation.  If fail, either deny access, or apply another group/policy of more resitrcted access.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Average Rating: 0 (0 ratings)
m.christian Tue, 07/03/2012 - 16:08

I am also interested in checking the computer account of a VPN client.  Is this supported on the ASA? 

Actions

Login or Register to take actions

This Discussion

Posted April 18, 2010 at 7:46 AM
Stats:
Replies:1 Avg. Rating:
Views:739 Votes:0
Shares:0
Tags: No tags.

Discussions Leaderboard