Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Transmission of password from VPN Client to Concentrator

I'm configuring a VPN 3005 Concentrator to terminate IPSec tunnels with the Cisco VPN Client. L2TP and PPTP both offer a selection of authentication methods (PAP, CHAP etc) however IPSec does not.

My question is - when using IPSec, in what form is the username and password sent from the VPN Client to the VPN Concentrator during the authentication phase? Is it cleartext or is the password hashed?

Thanks.

1 REPLY
New Member

Re: Transmission of password from VPN Client to Concentrator

Further to my question above:

I understand that the username and password are not sent in cleartext as they are encrypted by the initial tunnel that exists after the group username and password are authenticated. However, when they are received by the Concentrator and decrypted, are they then back in their original form as opposed to a hash?

Also, my question stands above with respect to the group username and password - how are they sent across the link to be authenticated?

76
Views
0
Helpful
1
Replies
CreatePlease to create content