EasyManuals Logo
Home>Cisco>Firewall>5510 - ASA SSL / IPsec VPN Edition

Cisco 5510 - ASA SSL / IPsec VPN Edition User Manual

Cisco 5510 - ASA SSL / IPsec VPN Edition
2164 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #2139 background imageLoading...
Page #2139 background image
1-15
Cisco ASA Series CLI Configuration Guide
Appendix 1 Configuring an External Server for Authorization and Authentication
Configuring an External LDAP Server
Table 1-5 lists the tokens for the Cisco-AV-pair attribute:
Active Directory/LDAP VPN Remote Access Authorization Examples
This section presents example procedures for configuring authentication and authorization on the ASA
using the Microsoft Active Directory server. It includes the following topics:
• User-Based Attributes Policy Enforcement, page 1-16
• Placing LDAP Users in a Specific Group Policy, page 1-18
• Enforcing Static IP Address Assignment for AnyConnect Tunnels, page 1-20
• Enforcing Dial-in Allow or Deny Access, page 1-22
• Enforcing Logon Hours and Time-of-Day Rules, page 1-25
Other configuration examples available on Cisco.com include the following TechNotes.
• ASA/PIX: Mapping VPN Clients to VPN Group Policies Through LDAP Configuration Example at
the following URL:
Table 1-5 ASA-Supported Tokens
Token Syntax Field Description
ip:inacl#Num= N/A (Identifier) (Where Num is a unique integer.) Starts all AV pair access control lists. Enforces
access lists for remote IPsec and SSL VPN (SVC) tunnels.
webvpn:inacl#Num= N/A (Identifier) (Where Num is a unique integer.) Starts all clientless SSL AV pair access control
lists. Enforces access lists for clientless (browser-mode) tunnels.
deny Action Denies action. (Default)
permit Action Allows action.
icmp Protocol Internet Control Message Protocol (ICMP)
1 Protocol Internet Control Message Protocol (ICMP)
IP Protocol Internet Protocol (IP)
0 Protocol Internet Protocol (IP)
TCP Protocol Transmission Control Protocol (TCP)
6 Protocol Transmission Control Protocol (TCP)
UDP Protocol User Datagram Protocol (UDP)
17 Protocol User Datagram Protocol (UDP)
any Hostname Rule applies to any host.
host Hostname Any alpha-numeric string that denotes a hostname.
log Log When the event occurs, a filter log message appears. (Same as permit and log or
deny and log.)
lt Operator Less than value
gt Operator Greater than value
eq Operator Equal to value
neq Operator Not equal to value
range Operator Inclusive range. Should be followed by two values.

Table of Contents

Other manuals for Cisco 5510 - ASA SSL / IPsec VPN Edition

Preview: Configuration Guide
Configuration Guide1822 pages
Preview: Hardware Installation Guide
Hardware Installation Guide82 pages
Preview: Getting Started Guide
Getting Started Guide208 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Cisco 5510 - ASA SSL / IPsec VPN Edition and is the answer not in the manual?

Cisco 5510 - ASA SSL / IPsec VPN Edition Specifications

General IconGeneral
BrandCisco
Model5510 - ASA SSL / IPsec VPN Edition
CategoryFirewall
LanguageEnglish

Related product manuals