Implementing Cisco Network Security (IINS v3.0) (#70)

How does the Cisco ASA use Active Directory to authorize VPN users?

It queries the Active Directory server for a specific attribute for the specified user.
It sends the username and password to retrieve an ACCEPT or REJECT message from the Active Directory server.
It downloads and stores the Active Directory database to query for future authorization requests.
It redirects requests to the Active Directory server defined for the VPN group.