Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
365
Views
0
Helpful
1
Replies

Why VPN authenticates a local user

Anand Narayana
Level 6
Level 6

‎05-03-2007 09:23 PM - edited ‎03-05-2019 03:51 PM

Hi,

attached to this post is the vpn configuration of my ASA, here my device authenticates user suresh & other users of AAA group, but it doesn't accept the tunnel-group users cbyvpn, i wanted to restrict the access of the AAA group not to login for VPN, bcoz that AAA group is meant only for logging on to this ASA via SSH or Telnet, but he can do both, so there is possibility that it can be mis-used. lemme know the configuration part where i hav done the mistake.

if i am not wrong "DefaultRAGroup" is the command which uses the local authentication AAA group. am i right?

Labels:
Preview file
3 KB
0 Helpful
1 Reply 1

wong34539
Level 6
Level 6

‎05-09-2007 10:24 AM

The security appliance provides two default tunnel groups, one for remote access (DefaultRAGroup) and one for LAN-to-LAN (DefaultL2LGroup). A remote-access Virtual Private Network (VPN) enables you to provide secure access to off-site users. ASDM enables you to configure the adaptive security appliance to create secure connections, or tunnels, across the Internet.

If you want to know more please click following URL:

http://www.cisco.com/en/US/docs/security/asa/asa71/getting_started/asa5500/quick/guide/rem_acc.html

0 Helpful
Customers Also Viewed These Support Documents