Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
814
Views
0
Helpful
1
Replies

VPN Users should use Domain username rather than username on ACS

MANSOORQ123
Level 1
Level 1

‎07-23-2011 06:25 AM - edited ‎03-10-2019 06:14 PM

Dear Team Members

i have a very basic requirement,

I have ACS ( running on VMWare) 5.1 . it is integrated with 2 AD Servers ( one in 2K3 domains and another in 2K8) domains, at present ACS is functional for

1: Wired NAC

2: Wireless NAC

3: Radius / Tacacs device Administration.

4: VPN Users ( Just Extended Authentication, no authroization through Dynamic ACL)

All above features are working fine, Client wants that VPN users should use their Active directory username/password, rather than username/password

configured on the ACS. in that case there will be no need to define username on ACS.

I executed the following.

1: go to Policy - Remote Access VPN

2: Select Identity - and Selects Identity Store Sequence as "AD1"

i then try with the following combination, when XAUTH happens for the remote VPN clients.

Domain/username

//Domain/username

\\Domain\Username

but none of them works from me. and authentication does not happen.

Any Idea in this regard will be highly appreciated.

Thanks

Mansoor

Labels:
0 Helpful
1 Reply 1

Tarik Admani
VIP Alumni
VIP Alumni

‎07-24-2011 01:15 AM

Mansoor,

In the monitoring and reporting page what does the report show for the users that are using the vpn? Are they failing to match a user in the AD container? Also what version of ACS are you using? Are you running any patches?

Thanks,

Tarik

0 Helpful
Customers Also Viewed These Support Documents