07-19-2012 06:35 AM - edited 03-10-2019 07:19 PM
Hello.
I'm using Cisco Secure ACS 4.2 for Windows to configure and authenticate VPNs external groups and users on VPN 3K concentrator.
Now I'm migrating to AC System 5.3.
I'm trying to configure the new system to do the same work.
I have configured a new access profile with all RADIUS attributes, than an access policy.
IPSec Phase 1 completed successfully but VPN client doesn't procede with XAUTH.
ACS View reports the correct rule and access service.
Any ideas?
Thanks.
Regards.
Andrea
Solved! Go to Solution.
07-19-2012 09:07 AM
Andrea,
What patch are you on? If you are at the latest patch then I would suggest opening a tac case.
Thanks,
Tarik Admani
*Please rate helpful posts*
07-19-2012 06:45 AM
Can you post a screenshot of your ACS 4.x user or group configuration and a screenshot of the authorization profile you built?
Thanks.
Tarik Admani
*Please rate helpful posts*
07-19-2012 07:01 AM
07-19-2012 07:40 AM
Andrea,
Can you remove the ; after the class attribute, and also please take a screenshot of the successful user authentication record in ACS 5.x can you verify that you are hitting the correct rule? Everything seems to be correct with respect to the group settings
Tarik Admani
*Please rate helpful posts*
07-19-2012 08:58 AM
07-19-2012 09:07 AM
Andrea,
What patch are you on? If you are at the latest patch then I would suggest opening a tac case.
Thanks,
Tarik Admani
*Please rate helpful posts*
07-19-2012 02:58 PM
Yes, we are using the last one.
Thanks.
Regards.
Andrea
07-20-2012 06:25 AM
We need to remove the Tunnel-Type attribute to work.
Regards.
Andrea
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide