Cisco ASA5510 - ldap, radius not working to inside server
Posted on 2011-10-10
This seems to be an access-list issue more than Windows, LDAP, or RADIUS.
If I run a "test aaa-server authentication my_aaa", I am getting
ERROR: Authentication Server not responding: AAA Server has been removed
If I packet-trace ldap and radius, either from the Windows server to the ASA or from ASA to Windows, the packet is dropped on the inside interface implicit rule.
I even went so far as to add an ACL on the inside interface "permit ip any host 192.168.1.1" and I still get the implicit drop on the inside interface.