HomePosts tagged '#ASA'

Cisco Adaptive Security Virtual Appliance (ASAv10 / ASAv30) + vCenter Site Recovery Manager (SRM)

September 18, 2014 patelrasesh Cisco ASA, Network Architecture, Network Design #ASA, #Cisco, ASAv10, ASAv30, DR, SRM, vCenter, Virtual Firewall

3 Things to keep in mind when building SRM plan for Cisco virtual ASAv10 & ASAv30 Firewalls.

Make sure you allocate right number of minimum and maximum CPU (command: show vm can be used to validate the configuration).
Instead of powering off, select option (or configure) to disconnect Virtual Firewall.
Configure to skip “vm tools” install.

**You cannot SRM ASA 1000v firewall.

Cisco ASA AnyConnect / SSL – Authenticate using RSA token & Active Directory combined

August 29, 2014August 30, 2014 patelrasesh Cisco ASA #ASA, #Cisco

Step 1
 Configure AAA for RSA & Active Directory
 !
 aaa-server RSA_RADIUS protocol radius
 aaa-server RSA_RADIUS (INSIDE) host 10.10.10.10
 key *****
 aaa-server RSA_RADIUS (INSIDE) host 10.10.10.11
 key *****
 !
 aaa-server AD_TESTAD protocol nt
 aaa-server AD_TESTAD (INSIDE) host 20.20.20.20
 nt-auth-domain-controller 20.20.20.20
 aaa-server AD_TESTAD (INSIDE) host 20.20.20.21
 nt-auth-domain-controller 20.20.20.21
 !
 Step 2
 Configure tunnel-group for RSA and Active Directory Authentication
 !
 tunnel-group DefaultWEBVPNGroup general-attributes
 authentication-server-group RSA_RADIUS
 authentication-server-group (INSIDE) RSA_RADIUS
 secondary-authentication-server-group AD_TESTAD use-primary-username
 secondary-authentication-server-group (INSIDE) AD_TESTAD use-primary-username
 !

M	T	W	T	F	S	S
		1	2	3	4	5
6	7	8	9	10	11	12
13	14	15	16	17	18	19
20	21	22	23	24	25	26
27	28	29	30	31