Cisco domain authorization via MultiOTP's FreeRadius.
I will try my best to describe our situation.
We have configured our Cisco ASA to request domain name, domain password and OTP when users connect through Cisco AnyConnect VPN. It works well, but we need to connect only through LDAPS.
To authorize username and password with domain, ASA goes to domain controller through LDAP, because ASA cannot connect through LDAPS.
To authorize OTP, ASA goes to MultiOTP. MultiOTP is configured to access domain controller through LDAPS, and it uses FreeRadius to do that, as I understand.
Is it possible to authorize domain requests from ASA through FreeRadius on MultiOTP? So it will be able to communicate via LDAPS with domain controller.
Thank you!
Comments