Cisco Systems ASA5515K9 Network Router User Manual

Open as PDF

of 1994

74-46

Cisco ASA 5500 Series Configuration Guide using the CLI

Chapter 74 Configuring Clientless SSL VPN

Understanding How KCD Works

Detailed Steps

Showing KCD Status Information

To display the domain controller information and the domain join status, follow these commands:

Command Purpose

Step 1

webvpn

Switches to webvpn configuration mode.

Step 2

kcd-server

Step 3

kcd-server aaa-server-group

Example:

ASA(config)# aaa-server KG protocol kerberos

ASA(config)# aaa-server KG (inside) host DC

ASA(config-aaa-server-host_# kerberos-realm test.edu

ASA(webvpn-config)# kcd-server KG username user1

password abc123

ASA(webvpn-config)# no kcd-server

Specifies the domain controller name and realm.

The AAA server group must be a Kerberos type.

Shows sample output.

Step 4

(Optional)

no kcd-server

Removes the specified behavior for the ASA.

Step 5

(Optional)

kcd-server reset

Resets to the internal state.

Step 6

kcd domain-join username <user> password <pass>

user—Does not correspond to a specific administrative user

but simply a user with service-level privileges to add a device

on the Windows domain controller.

pass—The password does not correspond to a specific

password but simply a user with service-level password

privileges to add a device on the Windows domain controller.

Checks for the presence of a kcd-server and starts

the domain join process.

The Active Directory username and password are

used only in exec-mode and are not saved in the

configuration.

Note Administrative privileges are required for

initial join. A user with service-level

priviledges on the domain controller will not

get access.

Step 7

kcd domain-leave

Verifies if the kcd-server command has a valid

domain join status and then initiates a domain leave.

Command Purpose

Step 1

webvpn

Switches to webvpn configuration mode.

Step 2

show webvpn kcd

Example:

ASA# show webvpn kcd

KCD-Server Name: DC

User : user1

Password : ****

KCD State : Joined

Displays the domain controller information and the

domain join status.

Shows sample output returned from this command.

previous next

Top Automotive Device Types

Top Automotive Brands

Top Baby Care Device Types

Top Baby Care Brands

Top Car Audio & Video Device Types

Top Car Audio & Video Brands

Top Cellphone Device Types

Top Cellphone Brands

Top Communications Device Types

Top Communications Brands

Top Computer Device Types

Top Computer Brands

Top Fitness Device Types

Top Fitness Brands

Top Home Audio Device Types

Top Home Audio Brands

Top Household Appliance Device Types

Top Household Appliance Brands

Top Kitchen Appliance Device Types

Top Kitchen Appliance Brands

Top Laundry Appliance Device Types

Top Laundry Appliance Brands

Top Lawn & Garden Device Types

Top Lawn & Garden Brands

Top Marine Equipment Device Types

Top Marine Equipment Brands

Top Musical Instrument Device Types

Top Musical Instrument Brands

Top Outdoor Cooking Device Types

Top Outdoor Cooking Brands

Top Personal Care Device Types

Top Personal Care Brands

Top Photography Device Types

Top Photography Brands

Top Portable Media Device Types

Top Portable Media Brands

Top Power Tools Device Types

Top Power Tools Brands

Top TV and Video Device Types

Top TV and Video Brands

Top Videogame Device Types

Top Videogame Brands

Cisco Systems ASA5515K9 Network Router User Manual