1-5
Cisco ASA Series CLI Configuration Guide
Chapter 1 Configuring the Identity Firewall
Information About the Identity Firewall
Figure 1-2 Deployment Scenario without Redundancy
As shown in Figure 1-3, you can deploy the Identity Firewall components to support redundancy.
Scenario 1 shows a deployment with multiple Active Directory servers and a single AD Agent installed
on a separate Windows server. Scenario 2 shows a deployment with multiple Active Directory servers
and multiple AD Agents installed on separate Windows servers.
Figure 1-3 Deployment Scenario with Redundant Components
As shown in Figure 1-4, all Identity Firewall components—Active Directory server, the AD Agent, and
the clients—are installed and communicate on the LAN.
Figure 1-4 LAN -based Deployment
ASAAD Server
AD Agent
304005
Scenario 1 Scenario 2
ASAAD Server
AD Agent
ASA
AD Server
AD Server
AD Agent
304004
Scenario 1 Scenario 2
ASA
AD Server
AD Server
AD Agent
Client ASA
AD Servers AD Agent
304003
LAN
NetBIOS Probe
mkg.example.com
10.1.1.2
WMI
LDAP
RADIUS
To Next Page
Loading...
Need help?
General
