11-07-2006 01:32 AM - edited 03-10-2019 02:49 PM
Hi,
Is it possible to use extended authentication (X-auth) to do a double authentication first one at group level against a RADIUS ?based token server and then a new authentication against the Active Directory to be able to map user group -mappings from AD- groups to ACS groups?
The goal is to be able to use a token based password (OTP) for authentication and then be able to authorize the user against the AD.
If there anyway to solve this or a best practice, please let me know.
Thankful for any help or inputs on this
Best regards.
// Dunken
11-07-2006 10:19 AM
Yes this is possible, let me know the the device you are using to terminate the VPN connections .
11-07-2006 11:04 PM
Hi, thanks for your reply.
The thought is to use Cisco ASA5020/VPN3030 to handle the request from the incoming VPN-connections.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide