Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
645
Views
0
Helpful
1
Replies

ASA 8.0 - SSL VPN Radius VSA

paulomv
Level 1
Level 1

‎06-26-2007 02:40 AM - edited ‎02-21-2020 03:07 PM

Hi,

I'm trying to configure RADIUS to authenticate users and tell ASA which Tunnle Group they should use.

The RADIUS server is an ACS 4.0 with connection to an external database which is MS Active Directory.

The authentication works but I'm having trouble in determining which is the RADIUS VSA I should use to send the Tunnel Group info to the ASA.

At this momento I'm using RADIUS (Cisco VPN 3000/ASA/PIX 7.x+) and the avpair [026/3076/085] Tunnel-Group-Lock. Here, I'm specifuing the corresponding Tunnel Group.

The ASA seems to ignore this av because the user is always put in DefaultWebVPNGroup Tunnel Group.

Any idea?

Thanks in advance

Paulo Vasconcelos

Labels:
0 Helpful
1 Reply 1

ohanusi
Level 1
Level 1

‎06-26-2007 06:50 AM

enter it as

OU=groupname

for example, OU=Finance

Regards

0 Helpful
Customers Also Viewed These Support Documents