Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

VPN 3030 / SecureACS Radius against AD

Can someone clear something up for me. Recently some of my colleagues indicated that when using a VPN concentrator 3030 and RADIUS authentication through a SecureACS database against and Active Directory; you can delete the account out of AD and the user is still allowed to VPN in to the network because their account name and password is “cached” on the SecureACS server. Therefore you have to remove the account out of both databases.

This seems absurd. Can anyone clear this up? Why is there a duplication of user accounts in the SecureACS server?

1 REPLY
Silver

Re: VPN 3030 / SecureACS Radius against AD

Hi Thompson,

When user gets initially connected to VPN, this group gets populated automatically....

If you need to deny the access, you have to delete the user from group.

Regards,

Ursula.

94
Views
0
Helpful
1
Replies