Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

VPN Client -to- PIX AAA authentication to local database

Does anyone know if you can authenticate (XAuth) a VPN client terminating on a PIX FW to a local AAA database?

I heard that it would be available in PIX v6.3.3 but haven't heard of anyone using it.

It would be nice to authenticate individual users (for customers without a TACACS+ server) rather than just giving them a group name and password.

Thanks!

1 REPLY
Cisco Employee

Re: VPN Client -to- PIX AAA authentication to local database

Sure you can, available in 6.3 as you said. Do the following:

crypto map client authen LOCAL

username password

You can have as many "username/password" combinations as you like. See http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_sw/v_63/cmdref/c.htm#1034654 for details.

92
Views
0
Helpful
1
Replies