Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Anyconnect using LDAP and cached authentication credentials


Is there any way to cache Windows login credentials and use them to authenticate an Anyconnect VPN to an ASA with LDAP-based AAA authentication configured?

Thanks,

Terry

PS - already asked but not answered back in June 2012:

https://supportforums.cisco.com/thread/2155853

Everyone's tags (2)
1 REPLY
Cisco Employee

Anyconnect using LDAP and cached authentication credentials

I was going through the knowledge base and documentation. I guess An Enhancement request was opened for that matter : CSCsh20863 AnyConnect client should provide option to save username and password. Which seems that it will be not implemented because of the security implications involved with introducing such feature , so there is no way to do this.

There is other enhancement. CSCsx76993    ENH: Make Anyconnect configurable to not cache credentials

Read this from the enhancement request: Anyconnect stores username  credentials within the preferences.xml file on machines.  So when client  is relaunched, the username is populated which could be a security  risk. So, it talks about only username. Since It  already save the username so lots of other customers don't want this to happen.

We could think of SSO.Unfortunately Single Sign On only works for Clientless SSL VPN, not AnyConnect SSL VPN.

~BR
Jatin Katyal

**Do rate helpful posts**

~BR Jatin Katyal **Do rate helpful posts**
2416
Views
0
Helpful
1
Replies
CreatePlease login to create content