Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
740
Views
0
Helpful
1
Replies

ACS and MS RAS with vpn

joseavalero
Level 1
Level 1

‎05-05-2005 02:16 AM - edited ‎03-10-2019 02:08 PM

I have a windows 2003 server with MS-Ras and authentication with ACS Server.

In my ACS I have defined an AAA Client Hostname for ms-ras with Authenticate Using =RADIUS (Ascend).

In interface configuration I configure Microsoft RADIUS options with all attributes checked.

I defined in Group Settings this atributes:

MS-MPPE-Encryption-Policy =Encryption Required,MS-MPPE-Encryption-Types= 128-bit and MS-CHAP-MPPE-Keys

It´s all ok but when my acs authenticate an user don´t send MS attributes and then the vpn with pptp don’t encrypt the tunnel.

¿what can I do for my ACS send Microsoft attributes to my remote access server?

Labels:
0 Helpful
1 Reply 1

owillins
Level 6
Level 6

‎05-11-2005 06:47 AM

If you are doing Radius authentication, you have to somehow tell the concentrator what group you want that user to get all its parameters from. You do this by defining two return attributes in the Radius server, one is the group name on the concentrator that you want the user to be added into and the other is a password that the user will be prompted for during their connection.

http://www.cisco.com/warp/public/471/cmptcsnt25.html

0 Helpful
Customers Also Viewed These Support Documents