AW: Cisco VPN3005 group auth
This is a discussion on AW: Cisco VPN3005 group auth within the FreeRADIUS Users forums, part of the Networking and Network Related category; Just configure the group on the concetrator as "external". Then on the freeradius create a user with the ...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
05-18-2005
|
|||
|
|||
AW: Cisco VPN3005 group auth
Just configure the group on the concetrator as "external". Then on the
freeradius create a user with the same name. IMPORTANT: Use the attribute "VPN IPSec-Authentication = =3D=3D 1" if you like to authenticate them through radius. Here are the other possible values: 0=3DNone 1=3DRadius 2=3DLdap 3=3DNT Domain 4=3DSDI 5=3DInternal (on the vpn concentrator) 7=3DKerberos/Activedirectory best rgds -Karel -----Urspr=FCngliche Nachricht----- Von: freeradius-users-admin@lists.freeradius.org [mailto:freeradius-users-admin@lists.freeradius.org] Im Auftrag von = John Sorel Gesendet: Mittwoch, 18. Mai 2005 16:19 An: freeradius-users@lists.freeradius.org Betreff: Cisco VPN3005 group auth I have a Cisco VPN concentrator and am trying to get group = authentication working with the FreeRadius server. User authentication works fine but the = radius server doesn't seem to care what group the user logs in with. Does anyone have a similar working setup? If I configure the group on the concentrator to be "external" then the radius server is asked to authenticate the group but not the user. If I configure the group on the concentator to be "internal" then the = group is authenticated on the concentrator and the user is passed to the radius server but there is no matchup between the group and the user. John Sorel Network Engineer Upromise, Inc. -=20 List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html 
|
Linear Mode
