Filter
Top Products
39-5
Cisco ASA 5500 Series Configuration Guide using ASDM
Chapter 39 Configuring the Identity Firewall
Information About the Identity Firewall
Figure 39-2 Deployment Scenario without Redundancy
As shown in Figure 39-3, you can deploy the Identity Firewall components to support redundancy.
Scenario 1 shows a deployment with multiple Active Directory servers and a single AD Agent installed
on a separate Windows server. Scenario 2 shows a deployment with multiple Active Directory servers
and multiple AD Agents installed on separate Windows servers.
Figure 39-3 Deployment Scenario with Redundant Components
As shown in Figure 39-4, all Identity Firewall components—Active Directory server, the AD Agent, and
the clients—are installed and communicate on the LAN.
Figure 39-4 LAN -based Deployment
Scenario 1
Scenario 2
xxxxxx
AD
Agent
ASA
AD Server
AD Agent
ASA
AD Server
AD Agent
AD
Agent
No Redundancy
Scenario 1 Scenario 2
xxxxxx
ASA
AD Server
AD Agent
AD
Agent
Redundant
AD
Agent
AD
Agent
AD Server
AD Server
AD Server
ASA
LAN
xxxxxx
Client
ASA
AD Servers
AD Agent
AD
Agent
mktg.sample.com
10.1.1.2
WMI
RADIUS
LDAP
NetBIOS Probe