Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Configuration of cut through proxy on asa using acs and an AD


I'm using an acs engine 4.2 to authenticate http users by configuring the cut through proxy feature on an asa 5505. To authenticate the users, an external AD database is also used.

The ACS, the AD and the remote agent are in the same vlan (inside) and the ACS detects the remote agent service and the AD domain but users defined on the AD are unable to pass the authentication.

Can you please help figure out this problem


Re: Configuration of cut through proxy on asa using acs and an A

It would be better if you could post the relevant config.

ALso do check the following :

- On the ASA run the command to check if you are able to successfully authenticate with the ACS using AD.

"test aaa authentication cool username password "

- check the Failed attempt logs under the Reports & Activity on the ACS server.