Cisco Systems ASA 5510 Network Router User Manual


  Open as PDF
of 2086
 
38-16
Cisco ASA 5500 Series Configuration Guide using ASDM
Chapter 38 Configuring AAA Servers and the Local Database
Configuring AAA
Windows NT Domain Server Fields
The following table describes the unique fields for configuring Windows NT Domain servers, for use
with the “Adding a Server to a Group” section on page 38-13.
Kerberos Server Fields
The following table describes the unique fields for configuring Kerberos servers, for use with the
“Adding a Server to a Group” section on page 38-13.
Field Description
Server Port Port number 139, or the TCP port number used by the ASA to
communicate with the Windows NT server.
Domain Controller The host name (no more than 15 characters) of the NT Primary Domain
Controller for this server (for example, PDC01). You must enter a name,
and it must be the correct host name for the server whose IP address you
added in the field, Authentication Server Address. If the name is
incorrect, authentication fails.
Field Description
Server Port Server port number 88, or the UDP port number over which the ASA
communicates with the Kerberos server.
Retry Interval The duration of time, 1 to 10 seconds, that the ASA waits between
attempts to contact the server.
Realm The name of the Kerberos realm. For example:
EXAMPLE.COM
EXAMPLE.NET
EXAMPLE.ORG
Note Most Kerberos servers require the realm to be all uppercase for
authentication to succeed.
The maximum length is 64 characters. The following types of servers
require that you enter the realm name in all uppercase letters:
Windows 2000
Windows XP
Windows.NET
You must enter the correct realm name for the server whose IP address
you entered in the Server IP Address field.