Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

IPSEC requirements

Do I need TACACS+ or RADIUS to connect Cisco VPN Client 3.0 users? How do I confugure for this?

  • Other Security Subjects
3 REPLIES
New Member

Re: IPSEC requirements

You don't need it, but it is stronly recommended to use Extended Authentication for VPN clients. You configure this by using the aaa-server commands to setup a RADIUS/TACACS+ authentication server and the 'crypto map xxxxx client authentication' command to setup Xauth for remote vpn clients. See http://www.cisco.com/warp/customer/110/B.html for an example setup.

New Member

Re: IPSEC requirements

How do I make a configuration that doesn't use RADIUS/TACACS+ for authentication, just using, per say, i.e. 'vpdn username cisco password cisco'. How do I get the PIX to use it's own user list to authenticate?

New Member

Re: IPSEC requirements

Mike, I am sorry, but the pix doesn't have an internal authentication scheme as a VPN concentrator or router does. You have to use either RADIUS or TACACS+.

216
Views
0
Helpful
3
Replies