Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

Cisco VPN Concentrator and LDAP

I have a simple question:

Can the VPN box access LDAP for strong authentication (i.e via certificates)

I know it can for CRL but can't find any info on user authentication via LDAP.

Any info would be appreciated.

2 REPLIES
Community Member

Re: Cisco VPN Concentrator and LDAP

You have to use a radius server as an intermediary to authenticate via an LDAP server. Configure the Concentrator to authenticate via the radius server. Configure the radius server to use ldap as an external database.

Community Member

Re: Cisco VPN Concentrator and LDAP

You have 2 ways of peer authentication:

1. Digital Certificates

2. Pre-Share secrets (or Gorup password on the VPN 3K)

You also have and extension of Cisco IPSec authentication call XAUTH, what can be done via:

1. RADIUS

2. Concentrator Internal User Database

3. and some others methods

If you use a RADIUS server that support LDAP Directory Services user authentication - ie. Funk Software Radius server. should be OK.

I hope it helps.

Regards

Gonzalo

376
Views
0
Helpful
2
Replies
CreatePlease to create content