EasyManuals Logo

Cisco 5510 - ASA SSL / IPsec VPN Edition Configuration Guide

Cisco 5510 - ASA SSL / IPsec VPN Edition
1822 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #1375 background imageLoading...
Page #1375 background image
64-65
Cisco ASA 5500 Series Configuration Guide using ASDM
OL-20339-01
Chapter 64 General VPN Setup
Configuring Clientless SSL VPN Connections
Fields
• Interface—Selects an interface, DMZ, Outside, or Inside. The default is DMZ.
• Server Group—Selects a server group to assign to the selected interface. The default is LOCAL.
• Manage—Opens the Configure AAA Server Groups dialog box.
• Fallback—Enables or disables fallback to LOCAL if the selected server group fails.
Modes
The following table shows the modes in which this feature is available:
Add or Edit SSL VPN Connections > Advanced > Authorization
This dialog box lets you configure the default authorization server group, interface-specific
authorization server groups, and user name mapping attributes. The attributes are the same for SSL VPN
and Clientless SSL VPN connections.
Fields
• Default Authorization Server Group—Configures default authorization server group attributes.
–
Server Group—Selects the authorization server group to use for this connection. The default is
--None--.
–
Manage—Opens the Configure AAA Server Groups dialog box.
–
Users must exist in the authorization database to connect—Enables or disables this requirement.
• Interface-specific Authorization Server Groups
–
Table—Lists each configured interface and the server group with which it is associated.
–
Add or Edit—Opens the Assign Authorization Server Group to Interface dialog box.
–
Delete—Removes the selected row from the table.
• User Name Mapping—Specifies user name mapping attributes.
• Username Mapping from Certificate—Lets you specify the fields in a digital certificate from which
to extract the username.
–
Pre-fill Username from Certificate—Check to extract the names to be used for secondary
authentication from the primary and secondary fields specified in this panel. You must configure
the authentication method for both AAA and certificates before checking this attribute.
–
Hide username from end user—Specifies not to display the extracted username to the end user.
–
Use script to select username—Names the script from which to extract a username from a digital
certificate. The default is --None--.
–
Add or Edit—Opens the Add or Edit Script Content dialog box, in which you can define a script
to use in mapping the username from the certificate.
–
Delete—Deletes the selected script. There is no confirmation or undo.
Firewall Mode Security Context
Routed Transparent Single
Multiple
Context System
• — • ——

Table of Contents

Other manuals for Cisco 5510 - ASA SSL / IPsec VPN Edition

Preview: Cli Configuration Guide
Cli Configuration Guide2164 pages
Preview: Hardware Installation Guide
Hardware Installation Guide82 pages
Preview: Getting Started Guide
Getting Started Guide208 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Cisco 5510 - ASA SSL / IPsec VPN Edition and is the answer not in the manual?

Cisco 5510 - ASA SSL / IPsec VPN Edition Specifications

General IconGeneral
BrandCisco
Model5510 - ASA SSL / IPsec VPN Edition
CategoryFirewall
LanguageEnglish

Related product manuals