07-06-2009 07:58 AM
Hello,
Following this note I try to assign an asa group policy through our ACS. The only difference is ACS v5.
I correctly set ACS to send the ou=group in the IETF[25] Class attribute. But debugging radius on asa i see the following arriving and not the ou= group :
Radius: Type = 25 (0x19) Class
Radius: Length = 22 (0x16)
Radius: Value (String) =
41 43 53 30 31 2f 33 34 31 31 36 39 35 39 2f 38 | ACS01/34116959/8
38 35 35 38 | 8558
Does someone experienced the same and have a solution ?
Thanks
Regards
07-06-2009 11:22 AM
Can you please paste the contents of the IETF 25 Class variable box from the group?
Verify the user you are authenticating is a member of that group, as well, so the attribute is returned.
07-07-2009 01:23 AM
09-24-2009 10:42 AM
Hi,
I have a question for you, you could help me please?
The problem:
we have a problem for authentication a remote access VPN (ASA 5510, version 8.2.1) with ACS 5.0 (version 5.0.21), but its not working.
When I try with ACS 4.1, the authentication work fine.
could you tell me what is your version ACS and ASA??
your system is working ok????
Regards.
Marco
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide