Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
429
Views
0
Helpful
3
Replies

Remote VPN, successful authentication but no connection

isk-admin
Level 1
Level 1

‎03-14-2014 06:12 AM - edited ‎03-10-2019 09:32 PM

Mobile users (WinXP, WIN7) use VPN-Client (5.0.07.0410 and some earlier for WinXP) to access our headquarter on CISCO ASA5520, V8.2(3). At different internet access points (German DSL like unitymedia) I see a successfully authentication (CISCO ACS 4.2 with Database Group Mappings to our Windows AD) but the connection is not closed. The client don´t get any messages back and no pop-up appear for another authentication. We can repeat this process any time by clicking CONNECT again. On other internet access points (German Telecom or local provider) it works very well. Whats going wrong?

Thanks for any help.

Labels:
0 Helpful
3 Replies 3

Jatin Katyal
Cisco Employee
Cisco Employee

‎03-16-2014 04:00 PM

since you see authentication being passed, I guess there is some issue with phase 2.

Can you run "debug crpto ipsec" and try to connect again.

Also provide me the o/p of 

show crypto ipsec sa

show crypto isakmp sa

show run group-policy <group-policy-name>

show vpn session-db summary

 

Regards,

Jatin Katyal

**Do rate helpful posts**

~Jatin
0 Helpful

isk-admin
Level 1
Level 1
In response to Jatin Katyal

‎03-26-2014 05:45 AM

Sorry for my late response but I was out of office due illness. In this time the problem was solved.

0 Helpful

Jatin Katyal
Cisco Employee
Cisco Employee
In response to isk-admin

‎03-26-2014 07:18 AM

NP. Thanks for updating the thread.

~Jatin
0 Helpful
Customers Also Viewed These Support Documents