Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Users might experience few discrepancies in Search results. We are working on this on our side. We apologize for the inconvenience it may have caused.
New Member

Cisco VPN Client - enforce remote access device to be corportate

Hi

i look for a solution to check if a connecting remote access client device is corporate device or not before the vpn connection is permitted.

I want to use the standard Cisco VPN Client (IPSEC) and use the "IPSEC-over-TCP" feature and change the IoT-Port from 10000 to 443 so clients only need TCP443 to start an full IPSEC connection.

This ssl-vpn trend is to expensive (licensed per concurrent users.. BOAHH!).

I want the users to use GINA (start vpn before windows logon) and login after successfull vpn to their windows domain so that login scripts can work and network drives are mapped.

But how to ENFOrCE that it must be a corporate device and the users dont install vpn client on a private device?

Thank you

1 REPLY

Re: Cisco VPN Client - enforce remote access device to be corpor

This should give you a starting point.

http://www.cisco.com/en/US/docs/ios/12_3/12_3x/12_3xa/gt_802_1.html

Hope that helps.

121
Views
0
Helpful
1
Replies
CreatePlease to create content