Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1607
Views
0
Helpful
1
Replies

3005 and externally configured group authentication

Xoron
Level 1
Level 1

‎08-30-2002 05:59 AM - edited ‎02-21-2020 10:03 AM

Network:

NT 4.0 single domain network. (2 domain controllers)

Cisco 3005 VPN Concentrator Version 3.6

Client:

Version 3.6 on Windows 2000 Pro box

Problem:

I setup the VPN box with both an externally configured group (one of my standard NT groups ie. Domain Users) and an internal group (internally configured 'tester' group). Using the VPN client on my windows 2000 pro box, I can connect using the internally configured 'tester' account, but not the external accounts.

For the external group, I have:

1. Setup the group name EXACTLY as it appears in the NT Domain

2. Set a known password.

3. Set the Auth servers to be the NT servers (which when I test either domain controller, they both fail for some reason. Just to note: I have the same servers used in the 'Configuration | System | Servers | Authentication' section of the config. Both domain controllers pass the test in that section of the config)

When I try and connect using the externally configured group, I get a "remote peer is no longer responding" on the VPN client

Any ideas why my externally configured groups aren't working (or am I doing something fundamentally wrong?)

Labels:
0 Helpful
1 Reply 1

cjacinto
Cisco Employee
Cisco Employee

‎09-04-2002 09:37 PM

Are you doing the external group authentication thru a normal NT domain authentication on the concentrator. If so this is not the way to do it, you could only do the external group definition/authentication, using radius. See:

http://www.cisco.com/warp/customer/471/vpn_3000_auth.html#topic2

0 Helpful
Customers Also Viewed These Support Documents