Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
411
Views
0
Helpful
2
Replies

Crypto Map - Question?

a_mughal
Level 1
Level 1

‎06-15-2002 03:07 PM - edited ‎03-08-2019 10:59 PM

Will someone explain me the following two lines regarding the configuration of VPN Client 3.5 with 3 DES.

!

crypto map myclientmap client authentication list vpnusers

crypto map myclientmap isakmp authorization list vpngroup

!

Why should I MUST HAVE to use these lines when I am not using any AAA Authentication?

Thanks

Labels:
0 Helpful
2 Replies 2

yusuff
Cisco Employee
Cisco Employee

‎06-15-2002 08:41 PM

crypto map myclientmap client authentication

http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122sup/122csum/csum2/122cssec/ssfike.htm#xtocid12

crypto map myclientmap isakmp authorization

http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122sup/122csum/csum2/122cssec/ssfike.htm#xtocid14

If you are not using AAA server, then you do not need to do client authentication and isakmp authorization, you should remove it.

HTH

R/Yusuf

0 Helpful

a_mughal
Level 1
Level 1
In response to yusuff

‎06-16-2002 01:08 AM

Yusuf Thanks for your reply. You are right that I should remove client authentication and isakmp authorization when I am not using AAA Server.

But the problem is when I am not using AAA server and remove these two lines, nothing is working and VPN Client is not able to connect. But when I remove the AAA Server but add these two lines than it is working. It is also very confusing for me as in my configuration other than AAA server, I did not mention any "myclientmap" map. So when I remove AAA Server than it should work without these two lines but it is not so.

Regards

Arshad

0 Helpful
Customers Also Viewed These Support Documents