Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 
New Member

VPDN and ACS 2.4 radius

I want to enable per user VPDN's by assigning the tunnel attributes, HGW etc. via Radius. I'm using a 3660 with IOS 12.2(4)T3 as the LAC. If I create the vpdn-group etc it works fine. But when I only have 'vpdn-enable' and 'vpdn search-order domain' configured the NAS/LAC does not hand the '@domain' bit of to the Radius server, it authenticates the entire 'username@domain'. I'm using the config example from

When I debug the radius transactions the Radius does feed through the AV pairs if I only authenticate using the 'domain' but it does not act on it or show anything about VPN/VPDN in the debugs. What am I missing? I allready have Async and Sync users connecting succesfully to this box via Radius.


Re: VPDN and ACS 2.4 radius

Since there has been no response to your post, it appears to be either too complex or too rare an issue for other forum members to assist you. If you don't get a suitable response to your post, you may wish to review our resources at the online Technical Assistance Center ( or speak with a TAC engineer. You can open a TAC case online at

If anyone else in the forum has some advice, please reply to this thread.

Thank you for posting.

CreatePlease to create content