cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
353
Views
0
Helpful
3
Replies

Remote VPN with two tier authentication?

ribin.jones
Level 1
Level 1

Hi,

Is it possible to have two tier authentication for Remote VPN with CA and a Radius/IAS server? I got a PIX 501 with in which I have the remote VPN configured with pres-shared key. I have tried remote vpn with Certificate authentication alone some months back. But, this time, I need to have CA with Radius/IAS. Any help/howto's is really appreciated.

Thanks,

Ribin

3 Replies 3

andrew.prince
Level 10
Level 10

yes it is possible - see the below config example:-

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a008092d8f1.shtml

The only differenece is instead of using LOCAL authentication in the VPN group - you create a server group and servers, then assign that attribute to the authentication type in the VPN group authentiction.

HTH>

This works in PIX 501 ? Thanks for the response

- Ribin

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: