Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 
New Member

Remote access VPN authentication error

We have configure remote access VPN and want to setup authentication service through RADIUS protocol. We are using cisco 4.1 ACS server and configure user and group on ACS.  Also configure RADIUS related parameter in CISCO asa 5510. But when want to test perticuler user for authentication i got authentication rejection massage .As per analysis of ACS ( faild attempt) ,generated bellow listed log

Authentication protocol is not allowed for this network access profile

We have already implemented 802.1x authentication in our implementation. Might be NAP create a problem .Can any one help me out how to solve this issue.


Re: Remote access VPN authentication error

Just to confirm, Is it a local user database ( ACS ) or external user database(say AD)? Can you post the aaa config from your ASA?

New Member

Re: Remote access VPN authentication error

Hi Rahgovin ,

    Please find the configuration which i have configured in ASA

aaa-server vpn protocol radius
aaa-server vpn host key cisco123

tunnel-group testgroup type ipsec-ra
tunnel-group testgroup general-attributes
address-pool testpool
authentication-server-group vpn

tunnel-group testgroup ipsec-attributes
pre-shared-key *

New Member

Re: Remote access VPN authentication error

I am using ACS internal database for user authentication

CreatePlease to create content