SA520 User accounts

Unanswered Question
Jul 4th, 2010
User Badges:

I've got a couple of questions regarding VPNs on an SA520.


I've set up the SSL vpn, and have used Active Directory authentication to get users on to it.


This is working fine so far, however I'd like to also use QuickVPN or Shrewsoft as a more robust method of getting connected.


I've got QuickVPN working - on a seperate user account, but if I try and add a user that is already defined as an SSL user it won't let me. So my question is how do I use the same AD authenticated user account for both types of VPN?


Second question, how do I get it to generate a Certificate request with a larger key? StartSSL.com will not issue certs with a key below 2048 bits, and the SA520 will only give me an option up to 1024.


Thanks,


Adam

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
apedder123 Tue, 07/13/2010 - 07:48
User Badges:

Also found GoDaddy won't release a small keyed cert either.

nmanglik Tue, 07/27/2010 - 17:07
User Badges:

Hi Adam,


Currently QuickVPN does not support AD authentication.


For 2048 bit certificate support has been added and the image will be released in first week of August (will be posted on www.cisco.com). If you need a beta image for this support please let us know.


Thanks,

Nitin.

Actions

This Discussion