WebVPN problems
Bookmark this page:
 Yahoo!
 Google
 Windows Live
 del.icio.us
 digg
 Netscape
|
|
|||||||||||||||||||||||||
|
Posted by WyriHaximus on September 27, 2005, 3:18 am
Please log in for more thread options At my work we have an intranet site in the DMZ. It has an eDirectory server on it (wich is a slave and gets it's data from the master) to let users login on the site. This login is used for both intranetsite and to login on a computer in the company. (Same password username combination.) We have a cisco firewall that supports WebVPN. Now our 'problem' is that a user has to login into WebVPN and then he/she has to login again with the same username and password on the intranet site. Has anyone an idee how to solve this? Greetings, WyriHaximus | |||||||||||||||||||||||||
|
Posted by WyriHaximus on September 27, 2005, 3:26 am
Please log in for more thread options I forgot something to put in the message. We like to have it that users login 1 time total for both WebVPN and intranet. Grtz, WyriHaximus | |||||||||||||||||||||||||
|
Posted by Peter Rowe on September 27, 2005, 7:03 am
Please log in for more thread options
--____UWKSNTSHWCRSBPQISJPP____ Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline; modification-date="Wed, 27 Sep 2005 13:03:20 +0100" I think you will need to use something like Novell's NMAS product to do = RADIUS authentication via Edirectory. I'm looking at setting it up but = no-one in Novell in UK seems to know what this product does or if it's = included in Netware/Edirectory.... ;) peter. Hey, I forgot something to put in the message. We like to have it that users login 1 time total for both WebVPN and intranet. Grtz, WyriHaximus --____UWKSNTSHWCRSBPQISJPP____ Content-Type: multipart/related; boundary="____DDJRSFUSKADVLEDSYWYY____" --____DDJRSFUSKADVLEDSYWYY____ Content-Type: text/html; charset=windows-1252 Content-Transfer-Encoding: quoted-printable Content-Disposition: attachment; filename="Text.htm"; modification-date="Wed, 27 Sep 2005 13:03:20 +0100" <HTML><HEAD>
<META http-equiv=3DContent-Type content=3D"text/html; charset=3Dwindows-125=
2">
do RADIUS authentication via Edirectory. I'm looking at setting it =
<META content=3D"MSHTML 6.00.2900.2722" name=3DGENERATOR></HEAD> <BODY style=3D"MARGIN: 4px 4px 1px; FONT: 8pt Arial"> <DIV>I think you will need to use something like Novell's NMAS product to = up but no-one in Novell in UK seems to know what this product does or if = it's included in Netware/Edirectory.... ;)</DIV>
--____DDJRSFUSKADVLEDSYWYY____--
<DIV> </DIV> ; 27/09/2005 08:26:42 >>><BR>Hey,<BR><BR>I forgot something to = put in the message.<BR><BR>We like to have it that users login 1 time = total for both WebVPN and<BR>intranet.<BR><BR>Grtz,<BR><BR>WyriHaximus<BR><= BR><BR><BR></DIV></BODY></HTML> --____UWKSNTSHWCRSBPQISJPP____-- | |||||||||||||||||||||||||
|
Posted by WyriHaximus on September 27, 2005, 9:11 am
Please log in for more thread options We are using RADIUS for connecting the eDirectory server and the
firewall. So that aint the problem. Our problem is that users have to auth with the firewall and then again on the intranet site. We want to merge that in 1 login. My first idee was that the firewall would ouput a form with the username and password and let it submit it in POST method so users get logged in automaticly :). | |||||||||||||||||||||||||
|
Posted by Walter Roberson on September 27, 2005, 6:43 pm
Please log in for more thread options :We are using RADIUS for connecting the eDirectory server and the
:firewall. So that aint the problem. Our problem is that users have to :auth with the firewall and then again on the intranet site. We want to :merge that in 1 login. My first idee was that the firewall would ouput :a form with the username and password and let it submit it in POST :method so users get logged in automaticly :). PIX 6.x definitely can't handle that kind of automatic form submission. But you aren't using PIX 6.x, as 6.x does not handle WebVPN. So you must be using PIX 7.0, or an ASA 5400 series with 7.0 software, or you must be using a 6500-based FWSM (firewall services module.) Then again, you might have been speaking loosely when you said "Cisco firewall", and including the Firewall Feature Set on one of the IOS routers... -- Many food scientists have reported chocolate to be the single most craved food. -- Northwestern University, 2001 | |||||||||||||||||||||||||
| Similar Threads | Posted |
| WebVPN problems | September 27, 2005, 3:18 am |
| Webvpn. | April 18, 2006, 5:47 am |
| WebVPN NAT-T | August 10, 2006, 11:00 pm |
| webvpn ssl | June 13, 2005, 3:31 pm |
| VPN3005 and SSL/WebVPN | October 12, 2005, 4:20 pm |
| WebVPN on Cisco 877 | August 28, 2006, 2:50 am |
| Cisco WebVPN: have you used it? | November 13, 2006, 2:31 pm |
| WebVPN ASA5510 | March 5, 2008, 3:42 pm |
| WebVPN missing on Cisco PIX 515 7.1.2? | April 19, 2006, 2:07 pm |
| How do I translate ALL WebVPN messages | May 2, 2006, 4:02 am |
| WebVPN URL getting time out error | May 3, 2006, 6:39 pm |
| How to create a WebVPN group? | May 16, 2006, 1:42 pm |
| Cisco 1812 (SDM and WebVPN on the same IP) | August 11, 2006, 7:45 pm |
| WebVPN SSL Tunnel VRF error | August 17, 2006, 9:45 pm |
| Re: webvpn and thin clients | June 14, 2005, 5:58 pm |