Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
236
Views
0
Helpful
1
Replies

VPN v4 client IP address from ACS server ??

r.state
Level 1
Level 1

‎03-13-2004 04:42 PM - edited ‎02-21-2020 01:04 PM

Hi,

Can anyone confirm whether or not it is possible for CSACS 3.2 (windows - Radius) to issue an IP address to a VPN client connecting to an IOS router, using dynamic-client profiles based on the logon username.

running debug radius on the NAS I can see that the ACS server is issuing the correct ip address that I have specified for the relevant user back to the NAS - but it doesn't get added to the ISAKMP Client profile.

Due to a complex network setup, I cannot use a pool of addresses on the NAS as would normally be the case.

Incidently, I will need to be able to do this on a PIX also..

I know that I should really be using a CVPN concentrator for this, but the hardware has already been purchased - by someone else...

Thanks in advance.

Labels:
0 Helpful
1 Reply 1

owillins
Level 6
Level 6

‎03-18-2004 11:10 AM

The PIX or a router would not be able to send configuration parameters to VPN clients per authorization. You would have to have a concentrator to send the IP address to the client.

0 Helpful
Customers Also Viewed These Support Documents