collapse

Search


User Info

 
 
Welcome, Guest. Please login or register.
Did you miss your activation email?

Author Topic: ASA VPN - radius vs ldap (AA) AAA  (Read 12839 times)

Offline islamm

  • Cisco Newbie
  • *
  • Posts: 1
  • Reputation: 0
  • Certification: CCNP
ASA VPN - radius vs ldap (AA) AAA
« on: October 18, 2014, 02:51:57 AM »
Hi Experts,

Trying to understand why one would use RADIUS server (ACS) for VPN authentication (seems to be the popular method) rather than LDAP (AD) for authentication, authorization and accounting purposes.  Any tips is greatly appreciated.

Thanks in advance.


Mo


Offline MC

  • Global Moderator
  • Cisco Guru
  • *****
  • Posts: 401
  • Reputation: 606
  • CCIE x3 (RS,Sec,SP)
  • Certification: CCIE
Re: ASA VPN - radius vs ldap (AA) AAA
« Reply #1 on: October 19, 2014, 10:01:14 PM »
It depends on what you are trying to accomplish. Both protocols work fine if all you are doing are basic user authentication and attribute mapping. RADIUS is a more popular option probably because it has been around longer and it has more vendor-specific attributes available. Another reason would be support for one-time token servers. If you already have either ACS or ISE, I would suggest you use that, but if not, you can use LDAP.

 

Related Topics

  Subject / Started by Replies Last post
2 Replies
26744 Views
Last post August 18, 2013, 05:59:34 PM
by MC
3 Replies
17309 Views
Last post October 29, 2013, 12:29:44 AM
by MC
4 Replies
22007 Views
Last post October 03, 2013, 01:41:39 AM
by adecisco
2 Replies
18942 Views
Last post April 30, 2014, 09:21:48 PM
by bhatsy
0 Replies
21887 Views
Last post May 29, 2016, 07:30:47 PM
by micruzz82

SimplePortal 2.3.7 © 2008-2024, SimplePortal