10-19-2008 03:01 AM - edited 03-03-2019 11:59 PM
In an easy vpn scenario where asa is the server the following command on the asa enables user authentication behind the hardware client:user-authentication enable
Which username and password will users enter ? How and where do we configure them? (on the server or on the client)
10-19-2008 05:49 AM
Hello Kouferidji,
in the document you attached in the other thread:
You have to enter the crypto ipsec client ezvpn xauth command which prompts you for a username and
password. This should match the username and password configured on the ASA 5520. Once the username
and password is agreed by both peers, the rest of the parameters are agreed and the IPsec VPN tunnel comes
up.
EZVPN(ASA): Pending XAuth Request, Please enter the following command:
EZVPN: crypto ipsec client ezvpn xauth
!--- Enter the crypto ipsec client ezvpn xauth command.
crypto ipsec client ezvpn xauth
Enter Username and Password.: cisco
so the username/pwd is defined on ASA but the authentication becomes interactive.
Hope to help
Giuseppe
10-20-2008 12:30 AM
Hello,
you are describing a hardware client authentication but that is not what i am referring to.I am talking about novice user authentication behind the hardware client.These users don't know anything and i would like to create a username/password (TO ESTABLISH VPN TUNNEL)like when authenticating in windows.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide