cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1013
Views
0
Helpful
3
Replies

CVPN 3015 - Problems to authenticate with Radius using 4.2.x version

cwelhous
Level 1
Level 1

Cisco VPN Concentrator 3015 version 3.6.8.A

Cisco VPN Client: 4.8.01.0300

Radius Server: RSA SecurID 4.xx unix version

Here is the problem, we use on the VPN Concentrator the 3.6.8.A with no problems, connecting vpn clients with Radius (SecurID) like authenticating metod.

When upgrading the VPN Concentrator version for support the SSL-VPN feature, the vpn clients can't connect. Only if de-active the radius authentication.

What is the problem?

How can I have the radius authentication working using a early release of vpn concentrator to use the SSL-VPN feature too?.

Thanks in advance,

Carlos Welhous

3 Replies 3

grant.maynard
Level 4
Level 4

log shows:

2903 11:11:40.921 06/16/06 Sev=Info/4 CM/0x63100017

xAuth application returned

2905 11:11:40.921 06/16/06 Sev=Info/4 CM/0x63100018

User does not provide any authentication data

This suggests it is prompting user for authentication and not getting anything back from user - what does the user see?

When the connection starts, the user sees the prompt authentication, the user put the username/password (RSA SecurID), press OK then the prompt authentication appears again, like no recognition or incorrect username/password typed.

Thxs,

Carlos Welhous

Have you tried to 'Test Authenticate" ? Drill down to Configuration > System > Servers > Authentication . Highlight an Authentication Server and then click 'Test'. This would at least allow you to test authentication from the concentrator itself. I have experience with RSA Auth/Securid . Did you resynch the id file witht the RSA Auth/SecurID ACE server ?

During the testing of the Authentication Servers, enable the AUTH event at Sev 9 . Check the log for any good debug information.

Hope this helps.

-Mike

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: