Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

ASA -->ldap --> AAA-Server, through VPN tunnel - not working

Hi everybody -

we are implementing AAA authentication via LDAP directly between the ASA an our Microsoft DCs - works wonderfull.

What I dont seem to get to work is the LDAP-communication if I try to reach the AAA Server through a Site-2-Site VPN tunnel.

What interface do I choose? Is this at all possible? Anybody done this? I dont see anything in the log when I try the "Test" button to try the authentication ..

Regards

Robert

2 REPLIES
Gold

Re: ASA -->ldap --> AAA-Server, through VPN tunnel - not working

make sure the interface that the vpn terminates on is included in the crypto acl along with the aaa-server.

Community Member

Re: ASA -->ldap --> AAA-Server, through VPN tunnel - not working

I dont get "..interface [...] included in the crypto acl" - lets say the public ip of my outside interface were my Site-2-Site Tunnel terminates should be included in the crypto ACL ????

sorry

226
Views
0
Helpful
2
Replies
CreatePlease to create content