06-21-2006 08:18 AM
Cisco VPN Concentrator 3015 version 3.6.8.A
Cisco VPN Client: 4.8.01.0300
Radius Server: RSA SecurID 4.xx unix version
Here is the problem, we use on the VPN Concentrator the 3.6.8.A with no problems, connecting vpn clients with Radius (SecurID) like authenticating metod.
When upgrading the VPN Concentrator version for support the SSL-VPN feature, the vpn clients can't connect. Only if de-active the radius authentication.
What is the problem?
How can I have the radius authentication working using a early release of vpn concentrator to use the SSL-VPN feature too?.
Thanks in advance,
Carlos Welhous
06-22-2006 01:11 AM
log shows:
2903 11:11:40.921 06/16/06 Sev=Info/4 CM/0x63100017
xAuth application returned
2905 11:11:40.921 06/16/06 Sev=Info/4 CM/0x63100018
User does not provide any authentication data
This suggests it is prompting user for authentication and not getting anything back from user - what does the user see?
06-22-2006 05:35 AM
When the connection starts, the user sees the prompt authentication, the user put the username/password (RSA SecurID), press OK then the prompt authentication appears again, like no recognition or incorrect username/password typed.
Thxs,
Carlos Welhous
06-27-2006 10:10 AM
Have you tried to 'Test Authenticate" ? Drill down to Configuration > System > Servers > Authentication . Highlight an Authentication Server and then click 'Test'. This would at least allow you to test authentication from the concentrator itself. I have experience with RSA Auth/Securid . Did you resynch the id file witht the RSA Auth/SecurID ACE server ?
During the testing of the Authentication Servers, enable the AUTH event at Sev 9 . Check the log for any good debug information.
Hope this helps.
-Mike
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: