Hello,
I've got an ASA on which I terminate several VPN Tunnels (e.g. Cisco Client VPN). Now I want do change to the Authentication and Authorization:
- Authentication should be provided via Radius Connection to RSA Server (this works fine)
- Authorization should be provided by querying a Windows AD Groupmembership via a LDAP connection. The user should be only able to log in if he is member of a certain AD group.
And here's my problem: I can configure a LDAP conenction but I can't search for group membership... The next thing is that the authorization tab (tunnel group) is always empty...
Is there a way to do this??
Thank you very much for your help!
Best regards,
Markus