Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1398
Views
0
Helpful
6
Replies

How do you set up VPN on ACS 5.2?

Go to solution
randy.klassen
Level 1
Level 1

‎06-29-2011 09:04 AM - edited ‎03-10-2019 06:11 PM

Hi all,

I am working on getting ACS to authenticate VPN users. I have a wireless/TACACS policy in place and working.

Can someone help me with the set up of the Authorization profile as well as the policy?

Thanks,

Randy

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
andamani
Cisco Employee
Cisco Employee

‎07-02-2011 10:09 PM

Hi Randy,

Please follow the following:

Network Resources > Network Devices and AAA clients > Create

1. Enter a name

2. Ip adrress

3. TACACS enable

4. enter shared secret key

5. Submit

Policy elements > Authorization and permissions > Device Administrator > Shell Profile > Permit Access

Access policy > Default Device Admin > Authorization > Customize

1.move Device IP address from the customize Conditions to Selected

2. ok

Access policy > Default Device Admin > Authorization > Create >

1. Name (give a name)

2. Status > enabled

3. Select a Condition i.e. Device ip address

4. enter the ip address of the NAS used for VPN termination.

5. Results  > Shell Profile > Permit Access

6. OK

Hope this helps.

Regards,

Anisha

P.S.: please mark this thread as answered if you feel your query is resolved. Do rate helpful posts.

View solution in original post

0 Helpful
6 Replies 6

Go to solution
andamani
Cisco Employee
Cisco Employee

‎07-02-2011 10:09 PM

Hi Randy,

Please follow the following:

Network Resources > Network Devices and AAA clients > Create

1. Enter a name

2. Ip adrress

3. TACACS enable

4. enter shared secret key

5. Submit

Policy elements > Authorization and permissions > Device Administrator > Shell Profile > Permit Access

Access policy > Default Device Admin > Authorization > Customize

1.move Device IP address from the customize Conditions to Selected

2. ok

Access policy > Default Device Admin > Authorization > Create >

1. Name (give a name)

2. Status > enabled

3. Select a Condition i.e. Device ip address

4. enter the ip address of the NAS used for VPN termination.

5. Results  > Shell Profile > Permit Access

6. OK

Hope this helps.

Regards,

Anisha

P.S.: please mark this thread as answered if you feel your query is resolved. Do rate helpful posts.

0 Helpful

Go to solution
Vinay Sharma
Level 7
Level 7

‎07-03-2011 01:04 AM

Hello Randy,

Moving this thread in AAA forum.

Thanks,

Vinay Sharma

Technical Community manager - Wireless

Thanks & Regards
0 Helpful

Go to solution
randy.klassen
Level 1
Level 1
In response to Vinay Sharma

‎07-04-2011 04:40 AM

Anisha,

Thanks so much for your response. I got it all set up now and authenticating correctly.

Cheers,

Randy

0 Helpful

Go to solution
andamani
Cisco Employee
Cisco Employee
In response to randy.klassen

‎07-04-2011 05:14 PM

Hi Randy,

That is great to hear.

Please mark this post as answered so that it may be of help to others.

Regards,

Anisha

-Do rate helpful posts

0 Helpful

Go to solution
randy.klassen
Level 1
Level 1
In response to andamani

‎07-05-2011 04:29 AM

Anisha,

Thanks again, i rated your post and marked it as correct. I am new to these forums but they are very very helpful.

/Randy

0 Helpful

Go to solution
andamani
Cisco Employee
Cisco Employee
In response to randy.klassen

‎07-05-2011 04:32 AM

Thank you Randy..!

Keep your questions and queries pouring in! :-)

Anisha

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents