Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
235
Views
0
Helpful
1
Replies

Async Dial with mutiple groups and ACS

IAIN HILL
Level 1
Level 1

‎04-13-2006 08:01 AM

has anyone else tried / managed to have multiple dialer mappings on a remote access router with the user dynamically allocated to the correct one based upon the details they provide as part of the PPP process?

In my case I have an ACS server 3.3 which deals with the authentication through AAA passed on by the router running 12.2 mainline. This works fine but the end user now wants to have an 802.1q trunk from the router onto the network with the dial in users IP address allocated by the ACS server and the user placed in the relivant dialer group and therfore VLAN mapping to give them access to the services they would have if there where on the LAN normally.

I guess the IP address allocation could be dealt with via pools on the RAS box but this would still leave me with the problem of dialer interface allocation based upon an authentication process which happens away from the router.

Labels:
0 Helpful
1 Reply 1

smalkeric
Level 6
Level 6

‎04-19-2006 08:14 AM

Check out the following sample configurations for various scenarios (including dial-up using Windows NT or domain database) and for dial-up using ACS user database for both RADIUS and TACACS+, see if it helps :

http://www.cisco.com/en/US/partner/products/sw/secursw/ps2086/tsd_products_support_series_home.html

http://www.cisco.com/en/US/customer/tech/tk59/technologies_configuration_example09186a00800fa54a.shtml

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents