collapse

Search


User Info

 
 
Welcome, Guest. Please login or register.
Did you miss your activation email?

Author Topic: ASA VPN - radius vs ldap (AA) AAA  (Read 4309 times)

Offline islamm

  • Cisco Newbie
  • *
  • Posts: 1
  • Reputation: 0
  • Certification: CCNP
ASA VPN - radius vs ldap (AA) AAA
« on: October 18, 2014, 02:51:57 AM »
Hi Experts,

Trying to understand why one would use RADIUS server (ACS) for VPN authentication (seems to be the popular method) rather than LDAP (AD) for authentication, authorization and accounting purposes.  Any tips is greatly appreciated.

Thanks in advance.


Mo


Offline MC

  • Global Moderator
  • Cisco Guru
  • *****
  • Posts: 387
  • Reputation: 606
  • CCIE x3 (RS,Sec,SP)
  • Certification: CCIE
Re: ASA VPN - radius vs ldap (AA) AAA
« Reply #1 on: October 19, 2014, 10:01:14 PM »
It depends on what you are trying to accomplish. Both protocols work fine if all you are doing are basic user authentication and attribute mapping. RADIUS is a more popular option probably because it has been around longer and it has more vendor-specific attributes available. Another reason would be support for one-time token servers. If you already have either ACS or ISE, I would suggest you use that, but if not, you can use LDAP.

 

Related Topics

  Subject / Started by Replies Last post
2 Replies
6964 Views
Last post August 18, 2013, 05:59:34 PM
by MC
3 Replies
8497 Views
Last post October 29, 2013, 12:29:44 AM
by MC
4 Replies
9921 Views
Last post October 03, 2013, 01:41:39 AM
by adecisco
2 Replies
4973 Views
Last post April 30, 2014, 09:21:48 PM
by bhatsy
0 Replies
3945 Views
Last post May 29, 2016, 07:30:47 PM
by micruzz82

SimplePortal 2.3.5 © 2008-2012, SimplePortal