06-17-2010 06:35 PM - edited 03-10-2019 05:12 PM
Hi,
I have configured one inside interface and one outside interface of the ASA Firewall. If inside users want to access the Web server located in outside interface AAA LOCAL database has to authenticate. After done the configuration I try to authenticate and Its authenticating very first time. But next time onwards its not asking any authentication credential even I clear the cookies on the Browser and try with other Browser also, even though its directly entering the web page.
Please let me what could be the problem and what I needs to change. I attached the configuration file for your reference.
06-17-2010 07:58 PM
Hi,
You have set the timeout for uauth to 10 seconds.
Can you check when you attempt to connect again, if the user show as authenticated still? ''sh uauth''
Federico.
06-17-2010 09:01 PM
Hi,
Yes, We have changed the timeout upto 10 seconds within the timeout put "show uauth" No users appear in the window.
Thanks
S.Rajkumar
06-18-2010 12:48 AM
Hi,
Yes, We have changed the timeout upto 10 seconds within the timeout put "show uauth" No users appear in the window.
Thanks
S.Rajkumar
06-18-2010 08:52 AM
How often do you want the ASA to prompt for authentication?
What happen if you set:
uauth timeout 00:00:01
Federico.
06-18-2010 09:37 PM
Hi,
Yes, I have changed the timeout upto 00:00:01 within the timeout put "show uauth" No users appear in the window.
ASA needs to authenticate per session basis and also every attempt to login.
Thanks
S.Rajkumar
06-19-2010 10:07 AM
I think that when you attempt an HTTP connection through the ASA, the ASA will prompt for authentication (if configured),
and allow the connection through.
But the ASA will not prompt for authentication again if the connection is still in the connection table of the ASA.
i.e
If you try to launch a different web page after succesfully authenticated, do you get prompted for credentials again?
Federico.
06-22-2010 12:46 AM
Thanks for your reply.
1. If I try to launch a different web page after succesfully authenticated, I did not get prompt for credentials again.
2. I have changed the Timeout for user authentication to 1 sec using the below command and clear the cookies from inside user system and also clear the uauth in ASA. Now I can able to see login prompt every attempt using same procedure at every time. But its not possible after implementing the setup do all the procedure every time.
Is there any permanent solution for this ?
3. Please let me know Is it AAA authentication will support for Remote Desktop Protocol ? Because I configured with 3389 port and try to login but it through the error message which I attached.
Timeout uauth 0:0:1 absolute
Regards
S.Rajkumar
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: