08-16-2006 09:46 AM
I have a 3000 configured for Ipsec using ACS to authenticate users. I tried adding SSL VPN. I can authenticate and the SSL client installs but I can't access anything. The log on the 3000 says I'm logged in via the base group. How can I get the SSL to work via the group I configured and not the base group?
Solved! Go to Solution.
08-16-2006 12:24 PM
You should be able to accomplish this with your RADIUS server. You would need to define class attribute 25 as an OU name equal to the specific group name you want them to connect to on the concentrator.
For example, assume you want a user SVC_User to connect to a group called SSL_VPN. In the user configuration in RADIUS you would do (under attribute 25):
OU=SSL_VPN;
(...Don't omit the semicolon.)
08-16-2006 12:24 PM
You should be able to accomplish this with your RADIUS server. You would need to define class attribute 25 as an OU name equal to the specific group name you want them to connect to on the concentrator.
For example, assume you want a user SVC_User to connect to a group called SSL_VPN. In the user configuration in RADIUS you would do (under attribute 25):
OU=SSL_VPN;
(...Don't omit the semicolon.)
08-16-2006 05:57 PM
Thanks that resloved my issue.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide