Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

871w vpn auth via dot1x -- darn close

I am setting up a 871W for an administrator so they can have a vpn tunnel and wireless from home back to the campus. We obviously want that user to authenticate.

I followed the infamous guide at http://www.cisco.com/en/US/tech/tk583/tk372/technologies_white_paper09186a00801fdef9.shtml and have it very close. The problem I seem to have is on the campus end, I am using Microsoft IAS as my radius server (works great with the regular vpn client) and when the router passes the authentication credentials to the radius server, the username it is passing is the mac address.

I know that the mac is supposed to be passed in the calling-station-identifier, but why am I not seeing the username that I logged in with (I am not being prompted either).

The client is an up-to-date XP laptop plugging directly in to a FastEthernet port. Is there a problem with my router config, radius config, or laptop?

Has anyone seen this before?

--update...

I read in another forum that you use the mac adddress as a username and a password. That actually works, but why? Also the windows credentials never get challenged... Which is what I really want to do.

1 REPLY
Bronze

Re: 871w vpn auth via dot1x -- darn close

Make sure the option Authenticate as computer when computer information is avilable under Local Area Connection properties.This should fix it.Refer the following URL for more information

http://www.cisco.com/en/US/tech/tk583/tk372/technologies_white_paper09186a00801fdef9.shtml

114
Views
0
Helpful
1
Replies
CreatePlease login to create content