09-20-2008 04:41 PM - edited 02-21-2020 03:57 PM
Hi,
My remote-access vpn is messed-up & doesnt work...
current config on ASA as..
===========================
tunnel-group RVPNtun type ipsec-ra
tunnel-group RVPNtun general-attributes
address-pool sslpool
authentication-server-group RADIUS
tunnel-group RVPNtun ipsec-attributes
pre-shared-key *
radius-sdi-xauth
crypto isakmp policy 65535
authentication pre-share
encryption 3des
hash sha
group 1
lifetime 86400
crypto ipsec transform-set RVPN esp-3des esp-md5-hmac
ip local pool sslpool 192.168.10.1-192.168.10.40 mask 255.255.255.128
=======================================
Is something missing???
I tested with CISCO VPN Client version 4 & 5 but no luck.
ASA can ping the ACS 4.0 box and vice-versa...
same account on ACS is used to authenticated ssh session for ASA without any problems
09-21-2008 01:34 AM
can u post the whole config please
09-22-2008 07:08 AM
Check out this link and match your config:
09-22-2008 09:10 AM
Thanks
Is there a way to retrieve group password define on ASA in Remote-Access VPN config ( it appears in * )
09-22-2008 11:25 AM
try copying the config to tftp server and then read.
09-23-2008 03:57 AM
Thanks
Remote-Access using ACS 4.0 is working Great.
How would I restrict a group on ACS to be authenticated only for VPN
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide