Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2168
Views
0
Helpful
6
Replies

how can configure VPN client with LDAP?

Go to solution
rechard_david
Level 1
Level 1

‎07-12-2010 12:45 AM - edited ‎03-04-2019 09:01 AM

Dear All,,

How can configure VPN client with LDAP on Cisco router and ASA?

i have Cisco router 1841, and ASA 5505.

Best Regards

Rechard_David

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Nagaraja Thanthry
Cisco Employee
Cisco Employee
In response to rechard_david

‎07-12-2010 08:34 PM

Hello,

Here is a sample configuration for the firewall (ASA):

aaa-server TEST protocol nt
aaa-server TEST (inside) host 192.168.254.11
nt-auth-domain-controller Primary
aaa-server TEST (inside) host
nt-auth-domain-controller Cisco

tunnel-group VPNGR type ipsec-ra
tunnel-group VPNGR general-attributes
address-pool VPNPool
authentication-server-group TEST LOCAL
default-group-policy VPNGR

Hope this helps.

Regards,

NT

View solution in original post

0 Helpful
6 Replies 6

Go to solution
rechard_david
Level 1
Level 1

‎07-12-2010 08:05 PM

Dear all,

Any body, do you hav any advise?

Best Regards,

Rechard

0 Helpful

Go to solution
Nagaraja Thanthry
Cisco Employee
Cisco Employee
In response to rechard_david

‎07-12-2010 08:34 PM

Hello,

Here is a sample configuration for the firewall (ASA):

aaa-server TEST protocol nt
aaa-server TEST (inside) host 192.168.254.11
nt-auth-domain-controller Primary
aaa-server TEST (inside) host
nt-auth-domain-controller Cisco

tunnel-group VPNGR type ipsec-ra
tunnel-group VPNGR general-attributes
address-pool VPNPool
authentication-server-group TEST LOCAL
default-group-policy VPNGR

Hope this helps.

Regards,

NT

0 Helpful

Go to solution
rechard_david
Level 1
Level 1
In response to Nagaraja Thanthry

‎07-13-2010 07:25 PM

Dear NT,

Thanks you for your assist!!!

Could you let me know , How can we configure VPN with LDAP on Cisco Router? Remote acces, not SSL

Best Regards,

Rechard_david

0 Helpful

Go to solution
Nagaraja Thanthry
Cisco Employee
Cisco Employee
In response to rechard_david

‎07-13-2010 08:13 PM

Hello,

I am not an expert in VPN configurations with routers. But you can use this document to configure the LDAP on the routers:

http://www.cisco.com/en/US/docs/ios/sec_user_services/configuration/guide/sec_cfg_ldap.html

You can use the AAA group in the VPN configuration for authentication.

Hope this helps.

Regards,

NT

0 Helpful

Go to solution
rechard_david
Level 1
Level 1
In response to Nagaraja Thanthry

‎07-15-2010 03:40 AM

Dear NT,

Thank you for your help!!!

I was rate for you already. and about configuration on Router i will be create new topic!!!!

Best Regards,

Rechard

0 Helpful

Go to solution
argnetworking
Level 1
Level 1
In response to rechard_david

‎08-18-2010 07:17 PM

I don't know if you have solved this. But if you want I have a Pix ASA working with authentication and dynamic ACL authorization. I have created a group in LDAP where I put my users and permisions they have (traffic ACL) and I can assign ACLs in a dynamic way (the pix can add ACLs that reads from the LDAP).

Regards,

Gonzalo

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card