Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
485
Views
0
Helpful
3
Replies

vpn client asa 5505

Go to solution
kirkvold
Level 1
Level 1

‎03-21-2008 12:40 PM - edited ‎02-21-2020 01:56 AM

I cannot get any Cisco Client to connect to a IPsec tunnel on an ASA 5505. I have used the wizard to configure the remote access vpn, use mostly default configs and then configured the Cisco Client to connect. I keep getting Group = DefaultRAGroup, IP = 10.10.10.250, Removing peer from peer table failed, no match!

any help would be appreciated.

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
JORGE RODRIGUEZ
Level 10
Level 10

‎03-21-2008 03:33 PM

Terry, this could be one reason for that error message.

When you launch your vpn client and setup a new VPN profile, you have to enter the tunnel group name you configured in ASA RA vpn and enter the password which is the Pre-shared key you also configured in ASA.

Did you created a new tunnel group or are you using the default DefaultRAGroup? I would recommend you create new tunnel group to keep it separate from the default tunnel group, but if you are uing DefaultRAGroup this is the first login pop up you get when you connect to ASA from the vpn client.

If your tunnel group name is DefaultRAGroup, and know the Pre-shared key, you enter the group name and the pre-shared key as a password , when you pass tunnel group name authentication,then another authentication window will pop up which then you will use a user name and password you have configured in ASA users accounts in device management Users/AAA. What I believe is happening is you are entering a user name and password as suppost to tunnel group name and password and that is why you are getting that error message.

You can use this link as a reference

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a008060f25c.shtml

Let me know if this helps or not, we may then take a different approache to solve the problem.

Rgds

Jorge

Jorge Rodriguez

View solution in original post

0 Helpful
3 Replies 3

Go to solution
JORGE RODRIGUEZ
Level 10
Level 10

‎03-21-2008 03:33 PM

Terry, this could be one reason for that error message.

When you launch your vpn client and setup a new VPN profile, you have to enter the tunnel group name you configured in ASA RA vpn and enter the password which is the Pre-shared key you also configured in ASA.

Did you created a new tunnel group or are you using the default DefaultRAGroup? I would recommend you create new tunnel group to keep it separate from the default tunnel group, but if you are uing DefaultRAGroup this is the first login pop up you get when you connect to ASA from the vpn client.

If your tunnel group name is DefaultRAGroup, and know the Pre-shared key, you enter the group name and the pre-shared key as a password , when you pass tunnel group name authentication,then another authentication window will pop up which then you will use a user name and password you have configured in ASA users accounts in device management Users/AAA. What I believe is happening is you are entering a user name and password as suppost to tunnel group name and password and that is why you are getting that error message.

You can use this link as a reference

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a008060f25c.shtml

Let me know if this helps or not, we may then take a different approache to solve the problem.

Rgds

Jorge

Jorge Rodriguez
0 Helpful

Go to solution
kirkvold
Level 1
Level 1
In response to JORGE RODRIGUEZ

‎03-25-2008 01:51 PM

Thanks Jorge, this was the fix!!

0 Helpful

Go to solution
JORGE RODRIGUEZ
Level 10
Level 10
In response to kirkvold

‎03-25-2008 03:58 PM

Terry, thanks for the update, and Im very glad you have it resolved. Also, thank you for the rating.

Bst Rgds

Jorge

Jorge Rodriguez
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card