Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Aggressive IKE Lan-to-Lan with RADIUS authorization (MS IAS)

Have anyone tried this out and made it work?

The documentation for this feature is relatively sparse - especially as for the setup on the RADIUS-server - basically this: http://www.cisco.com/en/US/products/sw/iosswrel/ps1839/products_feature_guide09186a0080087cb2.html

I have multiple sites with dynamic IP-addresses and I would like separate pre-shared keys stored in AD/IAS.

I've tried both FQDN and user-FQDN with different setups, both with the "user"-account in AD and the attributes in IAS but no go.

I've got lots of debug output but first it would be nice to know if anyone have a working setup?

1 REPLY
New Member

Re: Aggressive IKE Lan-to-Lan with RADIUS authorization (MS IAS)

i have never done that exact scenerion, but you may need to configure to allow certain permissions for 'Interactive and Network' in AD and IAS. I had to do that when I used IAS to authenticate dial-up users terminatting on a cisco device.

96
Views
0
Helpful
1
Replies