Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Using Cisco VPN client and VPN 3030 and authenticate against AD domain

We have ACS installed on a W2K as a member server on Active Directory domain. We would like to use the AD user database so that users

can use the Cisco VPN client to log on to the AD domain remotely.

Not sure how this AD works with the VPN 3030 concentrator.

Any suggestions?

Thank you in advance.

Paula

3 REPLIES
Cisco Employee

Re: Using Cisco VPN client and VPN 3030 and authenticate against

Hi Paula,

Your request seems to have come through in the upcoming CVPN3000 v4.0 software which is coming out in Early April. With that software you would be able to do Active Directory / LDAP (Native) authentication/authorization using the CVPN3000 Concentrator and clients.

Hope this helps,

Regards,

Aamir Waheed,

Cisco Systems, Inc.

CCIE#8933

-=-=-

New Member

Re: Using Cisco VPN client and VPN 3030 and authenticate against

Hi Aamir,

Thank you for your quick response.

I got the Cisco VPN client to authenticate against the Active Domain database

through the VPN 3030. However, the problem with this is that when we installed the Cisco VPN client software on XP, it disables the IPSec service

agent. I am just wondering if the following situations are possible:

1) Modify the registry (i.e. ports) on the XP OS so that Cisco VPN client can

work with the together, meaning that it will not disable Microsoft IPSec

service.

2) Try to make the Microsoft VPN configuration to work with the Cisco 3030.

This will be done through the Microsoft configuration.

Thanks again,

Paula

I

Cisco Employee

Re: Using Cisco VPN client and VPN 3030 and authenticate against

Hi Paula,

At this time, once the VPN Client is installed on Windows 2000 or XP, we change the "Start" paramemter for the IPSec Policy Agent to 3 (Manual), and after you uninstall the Client from the Control Panel | Add/Remove Prgs

and the "Start" entry wa will should be changed back to what it was originally (Auto, or 2). At this time this setting is not changing. As for the Microsoft VPN client you can use the PPTP client or the IPSec/L2TP client to connect to the CVPN3000.

Regards,

Aamir Waheed,

Cisco Systems, Inc.

-=-=-=-

243
Views
0
Helpful
3
Replies
CreatePlease to create content