I recently upgraded our Cisco Secure AS to ver 3.2 but have encountered problems. I have users who authenticate to a checkpoint NG FP3 firewall, which passes the authentication to cisco secure (radius) and cisco secure authenticates against a Novell NDS DB. This all works with 3.0(1) but with 3.2 it fails with the message "External DB user invalid or bad password", even though i know the credentials passed are correct. I had to roll back to allow users to connect.
Has anyone got an any ideas on this or seen it before?
I remember reading somewhere that a user must preface their username with the domain backslash to get authenticated. Please see if this might be the cause of the problem. Another possibility is bug CSCdu63791 'T+ enable partially broken for external db users'.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...