Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

Extended Authentication (Xauth)

Hi,

Is it possible to use extended authentication (X-auth) to do a double authentication first one at group level against a RADIUS ?based token server and then a new authentication against the Active Directory to be able to map user group -mappings from AD- groups to ACS groups?

The goal is to be able to use a token based password (OTP) for authentication and then be able to authorize the user against the AD.

If there anyway to solve this or a best practice, please let me know.

Thankful for any help or inputs on this

Best regards.

// Dunken

2 REPLIES
Community Member

Re: Extended Authentication (Xauth)

Yes this is possible, let me know the the device you are using to terminate the VPN connections .

Community Member

Re: Extended Authentication (Xauth)

Hi, thanks for your reply.

The thought is to use Cisco ASA5020/VPN3030 to handle the request from the incoming VPN-connections.

149
Views
0
Helpful
2
Replies
CreatePlease to create content