Solved: 5520ASA(8.4(4)1) not passing unique identifier

Mark Lind · ‎10-25-2013

Hello,

I have a 5520 ASA running ASA Version 8.4(4)1, ASDM 6.4(9) that has remote access VPN enabled and hands off to a Windows 2008 R2 box handing out DHCP addresses. We attempted to make an IP address reservation based upon MAC address for a single end user. It looks like the ASA is not passing the unique identifier from the remote user down to the Windows server.

I have read a lot of forum posts where people are asking about reserving IPs for raVPN based on MAC addresses and it is only available using version 9 and IP V6.

Is this the case even if the ASA is not handing out the DHCP IPs?

Thanks

Julio Carvajal · ‎10-25-2013

As long as I know (an example of that is this discussion: https://supportforums.cisco.com/thread/2129315 ) it's not supported.

But you can do it based on username on the ASA side ofcourse

username attributes

vpn-framed-ip-address

Rate all of the helpful posts!!!

Regards,

Jcarvaja

Follow me on http://laguiadelnetworking.com

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC

View solution in original post

Julio Carvajal · ‎10-25-2013