Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
564
Views
0
Helpful
2
Replies

VPN auth with Secure ACS

jpoulos
Level 1
Level 1

‎04-23-2001 07:44 AM - edited ‎02-21-2020 11:19 AM

I am having problems configuring my firewall to use the Secure ACS to authenticate remote user who VPN into the firewall. There isn't much documentation on the commands you need to enter in the firewall, and a lot of the ones I have found don't work on the pix. I want to authen. all users that are inbound into our network using our NT database. Any help with pix commands would be appreciated. Thanks

Labels:
0 Helpful
2 Replies 2

helvey-johnson
Level 1
Level 1

‎04-24-2001 01:20 PM

crypto map partner-map client authentication TACACS+

aaa-server TACACS+ protocol tacacs+

aaa-server TACACS+ (inside) host 0.0.0.0 (Secure ACS IP Address)PIX (Name you gave IN Secure ACS) timeout 10

aaa-server RADIUS protocol radius

aaa-server VPN protocol tacacs+

You also need to give "Dial in permissions" to each user in there NT User Account.(If you checked that in Secure ACS) This is a good idea because you can control who has access through the VPN.

0 Helpful

jpoulos
Level 1
Level 1
In response to helvey-johnson

‎05-01-2001 07:09 AM

Thanks, that worked. Can you do any kind of accounting on these connections with ACS. It is authenticating, but there is nothing being logged. Thanks

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents