Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
779
Views
0
Helpful
3
Replies

How to setup ACS group policy to authenticate VPN users

endpoint
Level 1
Level 1

‎11-24-2011 08:39 AM

Hi, currently i use a ASA as VPN server that host all group policy for all VPN users. VPN users are authenticated using Active Directory and ACS. I would like to move group policy configs from ASA to ACS. I come across doc that explains how to setup VPN concentrator with ACS ( http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_tech_note09186a00800a3b88.shtml) but i am looking for examples how to setup ACS with ASA.

Any suggestions greatly appreciated.

Thanks

Labels:
0 Helpful
3 Replies 3

endpoint
Level 1
Level 1
In response to ajay chauhan

‎11-25-2011 08:57 AM

Thanks ajay fop responce but i am not looking for that type of setup; already have that in place.

I am looking to have all VPN settings done at the ACS not at the ASA level.

Eg, in Radius ACS you have attribute 026/3076/001 to restrict Access-hours. So i want to use ACs attributes to configure VPN access not the ASA. ASA must be able to redirect users to ACS to get all VPN profile attributes.

Any other suggestions?

Regards,

0 Helpful

ajay chauhan
Level 7
Level 7
In response to endpoint

‎11-25-2011 09:09 AM

You can also edit the attributes for users- the old link i have given has got both the things users as well as acs config,

http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_configuration_example09186a00808cf897.shtml

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents