Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

CVPN 3015 - Problems to authenticate with Radius using 4.2.x version

Cisco VPN Concentrator 3015 version 3.6.8.A

Cisco VPN Client: 4.8.01.0300

Radius Server: RSA SecurID 4.xx unix version

Here is the problem, we use on the VPN Concentrator the 3.6.8.A with no problems, connecting vpn clients with Radius (SecurID) like authenticating metod.

When upgrading the VPN Concentrator version for support the SSL-VPN feature, the vpn clients can't connect. Only if de-active the radius authentication.

What is the problem?

How can I have the radius authentication working using a early release of vpn concentrator to use the SSL-VPN feature too?.

Thanks in advance,

Carlos Welhous

3 REPLIES

Re: CVPN 3015 - Problems to authenticate with Radius using 4.2.x

log shows:

2903 11:11:40.921 06/16/06 Sev=Info/4 CM/0x63100017

xAuth application returned

2905 11:11:40.921 06/16/06 Sev=Info/4 CM/0x63100018

User does not provide any authentication data

This suggests it is prompting user for authentication and not getting anything back from user - what does the user see?

New Member

Re: CVPN 3015 - Problems to authenticate with Radius using 4.2.x

When the connection starts, the user sees the prompt authentication, the user put the username/password (RSA SecurID), press OK then the prompt authentication appears again, like no recognition or incorrect username/password typed.

Thxs,

Carlos Welhous

New Member

Re: CVPN 3015 - Problems to authenticate with Radius using 4.2.x

Have you tried to 'Test Authenticate" ? Drill down to Configuration > System > Servers > Authentication . Highlight an Authentication Server and then click 'Test'. This would at least allow you to test authentication from the concentrator itself. I have experience with RSA Auth/Securid . Did you resynch the id file witht the RSA Auth/SecurID ACE server ?

During the testing of the Authentication Servers, enable the AUTH event at Sev 9 . Check the log for any good debug information.

Hope this helps.

-Mike

748
Views
0
Helpful
3
Replies