When configuring a new Group for Firewall policy from server with external authentication, the tabs disappear for Client FW. I want to use local authentication for the IPSec group, but have individual users authenticate from the Raduis server (which auths from the NT domain). How do I go about this. Thanks
I think what you are doing is makng the Groups as External groups, which will mke all the IPSec parameters (for the group) being requested from the Radius server which uou donot want to do. So add the Group as an Internally configured and then select the Authentication server under IPSec tab to the Radius server for the users.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...