Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
517
Views
5
Helpful
2
Replies

VPN Client -> ASA Group+Shared secret only?

johnelliot6
Level 2
Level 2

‎03-01-2010 08:20 PM

Hi,

Have users connecting into ASA, and they are required to enter Group+Shared secret, but then also a username+password(Which we have added as local accounts on the ASA) - Is there anyway to have just Group+shared secret auth?

Thanks in advance

Labels:
0 Helpful
2 Replies 2

Yudong Wu
Level 7
Level 7

‎03-01-2010 09:58 PM

http://www.cisco.com/en/US/docs/security/asa/asa80/command/reference/a2.html#wp1629625

check the above command reference, under related tunnel-group, add "authentication-server-group NONE" to disable user authentication.

johnelliot6
Level 2
Level 2
In response to Yudong Wu

‎03-01-2010 10:19 PM

Thanks Kevin!

Appears that command is now deprecated, new command is:

isakmp ikev1-user-authentication none

Under tunnel-group foo ipsec-attributes

Thanks again for the assistance.

0 Helpful
Customers Also Viewed These Support Documents