Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

ASA VPN Users Authentication via ACS

I've users setup for network access via vpn on an ASA. I've a long list of usernames and passwords on the ASA and I hate it. I want the vpn users to be authenticated against an ACSv4 server via AAA. Is there a doc anyone can point me to or show me how? Thanks.

PS. I know how to setup AAA to authenticate against ACS for administrative access. I'm looking for help authenticating VPN user via AAA against ACS. Thanks.

1 REPLY
Cisco Employee

Re: ASA VPN Users Authentication via ACS

Just define a AAA server group as follows (or you cna use an existing one if you have it defined already):

aaa-server protocol tacacs

aaa-server host x.x.x.x

Then under you VPN tunnel-group just assign the aaa-server to it as follows:

tunnel-group type ipsec-ra

tunnel-group general-attributes

  authentication-server-group

176
Views
0
Helpful
1
Replies
CreatePlease to create content