02-19-2013 02:25 AM - edited 03-10-2019 08:06 PM
hello friends..
i configured pix 525 for easy vpn. About 100 to 200 people will use this service. i dont have much knowledge about radius and tacacas servers. Is local data base enough for extended authentication or should i configure the server for it ?
regards.
Solved! Go to Solution.
02-19-2013 05:27 AM
Xauth is recommended and can be done with the local database or using RADIUS. All Win2k/2k3/2008 server include RADIUS as part of the OS like IAS or NPS server.
Just to add more security / Flexibility and to have centralize data/configuration for any large organisation, it is required. If you think the users strength will not grow in future, you can carry on with local database only.
Here is a document in case you need to study more about it.
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a008010a206.shtml
Regards,
Jatin Katyal
- Do rate helpful posts -
02-19-2013 05:27 AM
Xauth is recommended and can be done with the local database or using RADIUS. All Win2k/2k3/2008 server include RADIUS as part of the OS like IAS or NPS server.
Just to add more security / Flexibility and to have centralize data/configuration for any large organisation, it is required. If you think the users strength will not grow in future, you can carry on with local database only.
Here is a document in case you need to study more about it.
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a008010a206.shtml
Regards,
Jatin Katyal
- Do rate helpful posts -
02-19-2013 09:06 AM
thank you
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide