Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
257
Views
0
Helpful
1
Replies

VPN clients not connecting

ksarin123_2
Level 1
Level 1

‎06-17-2009 12:11 PM

Folks - I have configured my ASA 5520 to talk to ACS Server v 4.1 to authenticate end users when connecting via VPN. ACS checks Active Directory for the user account, and if it exists, it authenticates the VPN user.

Just recently, I configured the same ACS Server to authenticate users against a generic LDAP database. So when I VPN in as a user whose account exists in the LDAP database, I am unable to connect through the Cisco VPN client. I get a message "Peer 433. Connection terminated by peer for unknown reason". However, the ACS logs indicate that the user was authenticated successfully against the LDAP database. There are enough IP addresses in the VPN pool, so I know that's not an issue.

I am wondering what else could it be?

Any ideas?

Thanks!

Labels:
0 Helpful
1 Reply 1

irisrios
Level 6
Level 6

‎06-23-2009 07:21 AM

In order to resolve this issue enable NAT Traversal (NAT-T) or IPsec over User Datagram Protocol (UDP) on the VPN Concentrator.

0 Helpful
Customers Also Viewed These Support Documents