Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

VPN 3.5 Client Authentication with Active Directory

Can a 3.5 software client be authenticated on a 3060, and the users be authenticated by Microsoft AD? I know it gives you the option of NT Domain, Radius, SDI, or internal. I tried setting a group to external and setup an authentication server of one of the domain controllers, but I am unable to authenticate.

Thanks,

Doug

2 REPLIES
Cisco Employee

Re: VPN 3.5 Client Authentication with Active Directory

Currently native authentication from 3000 to AD is not possible. Current choice is you need to have Cisco Secure ACS windows/any radius server that supports external db authentication to AD.

New Member

Re: VPN 3.5 Client Authentication with Active Directory

Hi,

Use the Microsoft Internet Authentication Server to authenticate users with Active Directory. Just install it on a server in the active directory.

The only gotcha is that the IAS to Concentrator will be clear text so it needs to reside on a secure DMZ.

Documentation from Microsoft is not that clear

We have this running fine with some limitations.

94
Views
0
Helpful
2
Replies
CreatePlease to create content