Our network consists of 300 client pc's having internet access and almost all of them are joined to active directory domain I am not sure about it Now pro is that I want create the authentication on ASA that any pc which is not joined tp the domain will not have internet access meaning it should ask for domain user credentials
Pc already join to domain can have internet access directly without asking any credentials How can i do this on ASA ?
802.1x is a good option here to implement, basically it has all the switchports in your network become authenticiated ports where if you want to connect to the network, you need to first authenticate to a RADIUS server. This also allows, non-authenticated users to join a special guest vlan where you can control what they have access to.
I believe there is a way to make RADIUS and active directory coincide.
this is not an ASA solution, this is an access layer solution.
This will allow users to authenticate for http, https, ftp and telnet against a Radius server which can be set up to use active directory. There are proxy solutions out there that will allow a Windows AD user to use an existing Active Directory session but as far as I know the ASA is not one of them.
We are pleased to announce availability of Beta software for 16.6.3.
16.6.3 will be the second rebuild on the 16.6 release train targeted
towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are
looking for early feedback from customers befor...
Introduction Featured Speakers Luis Espejel is the Telecommunications
Manager of IENova, an Oil & Gas company. Currently he works with Cisco
IOS® and Cisco IOS XE platforms, and NX to some extent. He has also
worked as a Senior Engineer with the Routing P...
In this session you can learn more about Layer 3 multicast and the best
practices to identify possible threats and take security measures. It
provides an overview of basic multicast, the best security practices for
use of this technology, and recommendati...