Contents
lvii
Cisco ASA 5500 Series Configuration Guide using ASDM
OL-20339-01
Determining the Subnet Mask A-3
Determining the Address to Use with the Subnet Mask A-3
IPv6 Addresses A-5
IPv6 Address Format A-5
IPv6 Address Types A-6
Unicast Addresses A-6
Multicast Address A-8
Anycast Address A-9
Required Addresses A-10
IPv6 Address Prefixes A-10
Protocols and Applications A-11
TCP and UDP Ports A-11
Local Ports and Protocols A-14
ICMP Types A-15
APPENDIX
B Configuring an External Server for Authorization and Authentication B-1
Understanding Policy Enforcement of Permissions and Attributes B-2
Configuring an External LDAP Server B-3
Organizing the Security Appliance for LDAP Operations B-3
Searching the Hierarchy B-4
Binding the Security Appliance to the LDAP Server B-5
Login DN Example for Active Directory B-5
Defining the Security Appliance LDAP Configuration B-6
Supported Cisco Attributes for LDAP Authorization B-6
Cisco AV Pair Attribute Syntax B-13
Cisco AV Pairs ACL Examples B-15
Active Directory/LDAP VPN Remote Access Authorization Use Cases B-16
User-Based Attributes Policy Enforcement B-18
Placing LDAP users in a specific Group-Policy B-20
Enforcing Static IP Address Assignment for AnyConnect Tunnels B-22
Enforcing Dial-in Allow or Deny Access B-25
Enforcing Logon Hours and Time-of-Day Rules B-28
Configuring an External RADIUS Server B-30
Reviewing the RADIUS Configuration Procedure B-30
Security Appliance RADIUS Authorization Attributes B-30
Security Appliance IETF RADIUS Authorization Attributes B-38
Configuring an External TACACS+ Server B-39
To Next Page
Loading...
Need help?
General
