This should get you started. You made need a single sign on product depending on your goals. http://support.citrix.com/article/CTX113004 Mike _____ From: thin-bounce@xxxxxxxxxxxxx [mailto:thin-bounce@xxxxxxxxxxxxx] On Behalf Of Angela Smith Sent: Thursday, February 21, 2008 4:19 PM To: thin@xxxxxxxxxxxxx Subject: [THIN] Re: Cisco / Web Interface Single Signon Hi We are happy with the appliance. No-one has actually answered my question though. What do I need to do on the Web Interfaces to accept AD credentials from the VPN for single signon? Is it possible? Can it be done via the Web Interface GUI or do I need to script something. Any help appreciated as Im completely stuck. Thanks > Date: Thu, 21 Feb 2008 10:26:28 +0000 > From: berny@xxxxxxxxxxxxxxxxx > To: thin@xxxxxxxxxxxxx > Subject: [THIN] Re: Cisco / Web Interface Single Signon > > As a low latency firewall, my experience with this has been great. The > VLAN support in them allows to have multiple DMZs without having any > problems with interface costs. > > So I wouldn't write them down as junk > > Berny > > On 21/02/2008, Greg Reese <gareese@xxxxxxxxx> wrote: > > I'll agree with that. we were solely using it for web based vpn and not the > > firewall features. but sent it back in the end. > > > > > > On Wed, Feb 20, 2008 at 9:00 PM, Evan Mann <emann@xxxxxxxxxxxxxxxxxxxxx> > > wrote: > > > > > > > > > > > > > > > > > C'mon now. The ASA is far from a piece of junk. It's a firewall first > > and a VPN appliance second. Maybe the VPN features are "junk", but the ASA > > is an excellent enterprise class firewall. > > > > > > > > > > > > > > > > > > > > > From: thin-bounce@xxxxxxxxxxxxx [mailto:thin-bounce@xxxxxxxxxxxxx] On > > Behalf Of Greg Reese > > > Sent: Wednesday, February 20, 2008 8:36 PM > > > To: thin@xxxxxxxxxxxxx > > > Subject: [THIN] Re: Cisco / Web Interface Single Signon > > > > > > > > > > > > Shame you didn't post up before you bought the ASA. We just went through > > hell with one of those. What a piece of junk. We ended up ditching it in > > favor of the Citrix Secure Gateway. Much easier solution and the price was > > even better compared to the ASA > > > > > > > > > On Wed, Feb 20, 2008 at 6:03 PM, Angela Smith <angela_smith9@xxxxxxxxxxx> > > wrote: > > > > > > > > > Hi > > > > > > We have just installed a Cisco ASA 5520 VPN appliance with two factor RSA > > authentication. We are looking at enabling single signon so users enter AD > > username / token password and AD password at VPN login screen. We then want > > this information to pass thru the Web Interface so users do not need to > > login to AD at the Web Interface screen. Has anyone successfully done this? > > > > > > I don't know what I need to setup to get the Web Interface to read the AD > > information from the VPN. The default Web Interface authentication options > > do not seem to work. Any assistance appreciated. > > > > > > Thanks > > > Angela > > > ________________________________ > > > > > > > > Check our comprehensive Salary Centre Overpaid or Underpaid? > > > > > > > > > > > ************************************************ > For Archives, RSS, to Unsubscribe, Subscribe or > set Digest or Vacation mode use the below link: > //www.freelists.org/list/thin > ************************************************ _____ Find it at www.seek.com.au Your Future Starts Here. Dream it? Then be it! <http://a.ninemsn.com.au/b.aspx?URL=http%3A%2F%2Fninemsn%2Eseek%2Ecom%2Eau%2 F%3Ftracking%3Dsk%3Ahet%3Ask%3Anine%3A0%3Ahot%3Atext&_t=764565661&_r=OCT07_e ndtext_Future&_m=EXT>