I have a single 3000-series concentrator. Due to various forces at work in my organization, I must authenticate some users on an RSA server, and some users on a seperate server running RADIUS. In short, I need to authenticate people in "group-A" on authentication server-A, and people in "group-B" on authentication server-B.
I'm dictating VPN group-membership by a profile file I send to the user that has the group-name and password pre-specified. That's how I get the person into the group, then once they're in group-A, they will be authenticated on "auth-server-A". Clear as mud?
Question: Has this been done before, and if so how?
NOTE: I'm not trying to authenticate entry into the VPN group on the authentication server, I'm trying to authenticate the *user* himself on the auth-server. Entry into the VPN-group is determined by the group-name and PW stored in the client Profile.