Cisco ASA Series Cli Configuration Manual page 863

Software version 9.0 for the services module

Hide thumbs Also See for ASA Series:

Configuration manual (429 pages)

Getting started (31 pages)

Mount and connect (12 pages)

Table of Contents

Configuring AAA Servers and the Local Database

Host Mode Commands, Server Types, and Defaults (continued)

ldap-login-password

ldap-naming-attribute

ldap-over-ssl

mschapv2-capable

nt-auth-domain-controller NT

radius-common-pw

retry-interval

sasl-mechanism

RADIUS group with a single server, and an NT domain server.

hostname(config)# aaa-server AuthInbound protocol tacacs+

hostname(config-aaa-server-group)# max-failed-attempts 2

hostname(config-aaa-server-group)# reactivation-mode depletion deadtime 20

hostname(config-aaa-server-group)# exit

hostname(config)# aaa-server AuthInbound (inside) host 10.1.1.1

hostname(config-aaa-server-host)# key TACPlusUauthKey

hostname(config-aaa-server-host)# exit

hostname(config)# aaa-server AuthInbound (inside) host 10.1.1.2

Applicable AAA Server

shows how to add one TACACS+ group with one primary and one backup server, one

Multiple AAA Server Groups and Servers

Default Value

If not set, the ASA uses sAMAccountName for

LDAP requests. Whether using SASL or plain

text, you can secure communications between

the ASA and the LDAP server with SSL. If you

do not configure SASL, we strongly

recommend that you secure LDAP

communications with SSL.

auto-discovery If auto-detection fails to determine the LDAP

server type, and you know the server is either a

Microsoft, Sun or generic LDAP server, you

can manually configure the server type.

Cisco ASA Series CLI Configuration Guide

Configuring AAA

Show Quick Links

Chapters

Table of Contents

Troubleshooting

Cisco ASA Series Cli Configuration Manual page 863

Hide quick links:

Chapters

Troubleshooting

Related Manuals for Cisco ASA Series

Related Products for Cisco ASA Series

This manual is also suitable for:

Table of Contents