Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
204
Views
0
Helpful
1
Replies

Simple Question

jimb
Level 1
Level 1

‎06-17-2003 01:30 PM - edited ‎03-09-2019 03:42 AM

Can an Ascend LAC set up a vpdn l2tp tunnel with a Cisco LNSusing radius attributes? Surely somebody at Cisco knows whether or not this can be done. From what I can tell, Cisco does not support IETF attributE 68 for the tunnel password, and forces the use of Cisco AVpairs to send the password, which an Ascend LAC does not understand. Is this true?

Labels:
0 Helpful
1 Reply 1

jsivulka
Level 5
Level 5

‎06-23-2003 10:30 AM

IETF Tunnel-Password attribute is numbered 69 (not 68) and is supported version 12.1 onwards. (Attribute 68 too is supported version 12.1 onwards). I think it is worth pointing out that when using attribute 69, all passwords rx'ed are encrypted. When a NAS tries to decypt a password that was not encrypted in the first place, this might result in authorization faliures. Use the 'radius-server attribute 69 clear' command receive nonencrypted tunnel passwords. More information about this command is available at http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/fsecur_r/fssprocr/srfrad.htm#1039165

0 Helpful
Customers Also Viewed These Support Documents