B-23
Cisco ASA 5500 Series Configuration Guide using ASDM
OL-20339-01
Appendix B Configuring an External Server for Authorization and Authentication
Configuring an External LDAP Server
Step 3 Associate the LDAP attribute map to the AAA server.
The following example enters the aaa server host configuration mode for the host 3.3.3.4, in the AAA
server group MS_LDAP, and associates the attribute map static_address that you created in step 2:
hostname(config)# aaa-server MS_LDAP host 3.3.3.4
hostname(config-aaa-server-host)# ldap-attribute-map static_address
Step 4 Verify the vpn-address-assigment command is configured to specify aaa by viewing this part of the
configuration with the show run all vpn-addr-assign command:
vpn-addr-assign aaa
hostname(config)# show run all vpn-addr-assign
vpn-addr-assign aaa <<<< ensure this configured.
no vpn-addr-assign dhcp
vpn-addr-assign local
hostname(config)#
Step 5 Establish a connection to the adaptive security appliance with the AnyConnect client. Observe the
following:
• The banner is received in the same sequence as a clientless connection (Figure B-7).
• The user receives the IP address configured on the server and mapped to the adaptive security
appliance (Figure B-8).
Figure B-7 Verify the Banner for the AnyConnect Session
To Next Page
Loading...
Need help?
General
