Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

OpenLDAP with ASA5505 w/7.2 firmware..

Status
Not open for further replies.

cowmix

Technical User
Jan 19, 2009
6
US
[This is sort of a repost from "Cisco: Routers Forum"..]

Does anyone have VPN authentication working with OpenLDAP? If you have it working, did you have to add the schema with all the attributes? My goal is to just use OpenLDAP for authentication and then use the default attributes already loaded on the ASA for the 'local' users.

Anyway, when I try to authenticate against OpenLDAP the ASA sends a syslog message that the username and password are wrong.. (but they are not)..

Here is part of my config:

aaa-server companyldap protocol ldap
aaa-server companyldap host 192.168.160.10
ldap-base-dn ou=People,dc=example,dc=com
ldap-scope subtree
ldap-naming-attribute cn
ldap-login-password XXXXXXXX
ldap-login-dn uid=myuid,ou=People,dc=example,dc=com
aaa authentication ssh console LOCAL

tunnel-group vpnusers general-attributes
address-pool vpnpool
authentication-server-group companyldap
default-group-policy vpnusers

Any help would be appreciated.
 
This magically started to work.. weird.
 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top