Cisco ASA Series Cli Configuration Manual page 856
Software version 9.0 for the services module
Hide thumbs
Also See for ASA Series:
- Configuration manual (429 pages) ,
- Getting started (31 pages) ,
- Mount and connect (12 pages)
Table of Contents
Advertisement
Licensing Requirements for AAA Servers
Note
If the primary DN field is not present in the certificate, the ASA uses the secondary DN field value as
the username for the authorization request.
For example, consider a user certificate that includes the following Subject DN fields and values:
Cn=anyuser,OU=sales;O=XYZCorporation;L=boston;S=mass;C=us;ea=anyuser@example.com
If the Primary DN = EA (E-mail Address) and the Secondary DN = CN (Common Name), then the
username used in the authorization request would be anyuser@example.com.
Licensing Requirements for AAA Servers
Model
License Requirement
All models
Base License.
Guidelines and Limitations
This section includes the guidelines and limitations for this feature.
Context Mode Guidelines
Supported in single and multiple context mode.
Firewall Mode Guidelines
Supported in routed and transparent firewall mode.
IPv6 Guidelines
Supports IPv6.
Configuring AAA
This section includes the following topics:
•
•
•
•
•
•
Cisco ASA Series CLI Configuration Guide
1-10
–
Uses the username value of the certificate primary DN field as a credential
Configuring AAA Server Groups, page 1-11
Configuring Authorization with LDAP for VPN, page 1-18
Configuring LDAP Attribute Maps, page 1-20
Adding a User Account to the Local Database, page 1-22
Authenticating Users with a Public Key for SSH, page 1-29
Differentiating User Roles Using AAA, page 1-29
Chapter 1
Configuring AAA Servers and the Local Database
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
