Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

VPN Client Single Sign-on to MS AD

I would like to create a single sign-on for my users. Currently they authenticate to the VPN and then to individual servers within the domain. I would like to have just one logon. I have a Pix 515 which terminates VPNs from clients using Cisco Client 4.0. I authenticated users through MS IAS (radius) to the MS active directory. After users have logged into the VPN, they then have to logon to each server with a username@domain.com logon. As always, any advise you can give is greatly appreciated.

4 REPLIES
Silver

Re: VPN Client Single Sign-on to MS AD

Are they connecting from machines that are members of the domain?

New Member

Re: VPN Client Single Sign-on to MS AD

Some are machines members, some machines are not members, some users are probalby loggin on locally.

New Member

Re: VPN Client Single Sign-on to MS AD

The problem here is one of Microsoft not Cisco. Non domain member machines will have to logon at each and every new machine they connect to over the tunnel.

Some of this can be alleviated by having your users connect to an internal web portal.

Anonymous
N/A

Re: VPN Client Single Sign-on to MS AD

I was wondering if you came up with a solution to this annoying problem (besides using Cisco's ACS server)?

Thanks for your help.

Thuan

291
Views
0
Helpful
4
Replies
CreatePlease to create content