EasyManuals Logo
Home>Cisco>Firewall>5510 - ASA SSL / IPsec VPN Edition

Cisco 5510 - ASA SSL / IPsec VPN Edition User Manual

Cisco 5510 - ASA SSL / IPsec VPN Edition
2164 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #1826 background imageLoading...
Page #1826 background image
1-18
Cisco ASA Series CLI Configuration Guide
Chapter 1 Configuring Clientless SSL VPN
Using Single Sign-on with Clientless SSL VPN
Configuring SSO Authentication Using SiteMinder
This section describes configuring the ASA to support SSO with SiteMinder. You would typically
choose to implement SSO with SiteMinder if your website security infrastucture already incorporates
SiteMinder. With this method, SSO authentication is separate from AAA and happens once the AAA
process completes.
Prerequisites
• Specifying the SSO server.
• Specifying the URL of the SSO server to which the ASA makes SSO authentication requests.
• Specifying a secret key to secure the communication between the ASA and the SSO server. This key
is similar to a password: you create it, save it, and enter it on both the ASA and the SiteMinder Policy
Server using the Cisco Java plug-in authentication scheme.
Optionally, you can do the following configuration tasks in addition to the required tasks:
• Configuring the authentication request timeout.
• Configuring the number of authentication request retries.
Restrictions
If you want to configure SSO for a user or group for clientless SSL VPN access, you must first configure
a AAA server, such as a RADIUS or LDAP server. You can then set up SSO support for clientless SSL
VPN.
Detailed Steps
This section presents specific steps for configuring the ASA to support SSO authentication with CA
SiteMinder. To configure SSO with SiteMinder, perform the following steps:
Command Purpose
Step 1
webvpn
Switches to webvpn configuration mode.
Step 2
sso-server with the type option
Example:
hostname(config)# webvpn
hostname(config-webvpn)# sso-server Example type
siteminder
hostname(config-webvpn-sso-siteminder)#
Creates an SSO server.
Creates an SSO server named Example of type
siteminder.
Step 3
config-webvpn-sso-siteminder
Switches to site minder configuration mode.
Step 4
web-agent-url
Example:
hostname(config-webvpn-sso-siteminder)#
web-agent-url http://www.Example.com/webvpn
hostname(config-webvpn-sso-siteminder)#
Specifies the authentication URL of the SSO server.
Sends authentication requests to the URL
http://www.Example.com/webvpn.

Table of Contents

Other manuals for Cisco 5510 - ASA SSL / IPsec VPN Edition

Preview: Configuration Guide
Configuration Guide1822 pages
Preview: Hardware Installation Guide
Hardware Installation Guide82 pages
Preview: Getting Started Guide
Getting Started Guide208 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Cisco 5510 - ASA SSL / IPsec VPN Edition and is the answer not in the manual?

Cisco 5510 - ASA SSL / IPsec VPN Edition Specifications

General IconGeneral
BrandCisco
Model5510 - ASA SSL / IPsec VPN Edition
CategoryFirewall
LanguageEnglish

Related product manuals