Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
345
Views
0
Helpful
2
Replies

PPTP Tunnel Group Configuration Question

aebba
Level 1
Level 1

‎05-22-2008 10:31 AM - edited ‎03-09-2019 08:46 PM

I am currently using a CiscoSecure ACS server to authenticate PPTP clients to a VPN 3000. The documentation states you enable PPTP by editing the Base Group on the VPN 3000. But I want to use separate IP address ranges for different users to apply ACLs, but I cannot figure out how to assign users on the ACS server to a different group that points to a group other than the base group on the VPN 3000.

Labels:
0 Helpful
2 Replies 2

aebba
Level 1
Level 1
In response to andrew.prince

‎05-29-2008 10:31 AM

The guide helped, but was incomplete. With the help of TAC we figured it out. In order for CiscoSecure ACS to point to a different group on the VPN 3000 Concentrator, you have to enable RADIUS IETF attribute #25 and specify the group name on the concentrator. What was lacking from the guide was the exact syntax. The correct syntax was "ou=groupname" and it worked.

0 Helpful
Customers Also Viewed These Support Documents