IOS EZVPN client to PIX EZVPN server

Unanswered Question
May 8th, 2008


I have setup an EZVPN connection between Cisco 851 (client) and PIX 515E 6.3(5) which is configured as an EZVPN server. Everything works OK, but the client is not allowed to save the password which is very annoying and makes the whole thing unusable.

c851#show crypto ipsec client ezvpn

Easy VPN Remote Phase: 6

Tunnel name : test

Inside interface list: Vlan1

Outside interface: Dialer0

Current State: IPSEC_ACTIVE


DNS Primary:

DNS Secondary:

Default Domain:

Save Password: Disallowed

PIX configuration:

vpngroup test address-pool vpnmail

vpngroup test dns-server

vpngroup test default-domain

vpngroup test split-tunnel test

vpngroup test idle-time 86400

vpngroup test password ********

I know there is a 'save-password' option in IOS EZVPN server, but I cannot figure out how to make this happen on PIX. Is this option supported at all or do we need a new ASA device? I also cannot use 'normal' L2L VPN because client uses dynamic IP address.



I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)


This Discussion