I have an ASA 5510 we use as our corporate VPN and Firewall. Currently we have a Microsoft CRM solution which only authenticates via Active Directory on an internal server. We want to be able to have users log into the WebVPN and access the URL for the CRM interface, but it keeps giving us a you are not authorized to use this page error.
I have set up a RADIUS server, in the hopes that I can get the WebVPN to authenticate to the RADIUS machine for those users, but have no idea where to start. I don't want to arbitrarily start changing things on the firewall without knowing exactly what I'm doing, and our documentation is sparse. Thanks in advance for any help.
Re: AAA Windows Authentication for WebVPN - ASA 5510
I did something similair with the ASA, just for IPsec VPN. I essentially ended up abandoning the LDAP authentication, because it never seemed to read the active directory past username and password.
I suspect that your RADIUS isn't completely setup. did you use the 'test' button succesfully under asdm?
in the microsoft IAS RADIUS server you have to go into the properties of it and specify the client (the ASA), the policy matching rules and then the autentication method. my guess is that when you've configured these things on the microsoft IAS, then your authentication will work.
DocumentationCode download linksGoalRequirementLimitationsSupported ISR
and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity
options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in
HA DocumentationCode download linksGoalRequirementLimitationsSupported
ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationCo...
Question I am currently unable to specify "crypto keyring" command when
configuring VPN connection on my cisco 2901 router. The following
licenses have been activated on my router :