Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I'm looking to configure a PIX (v6.2) to accept connections from various IPSec VPN clients which will be connection from dynamily assigned IP addresses (no way to predict ranges). The clients will be anything from xDSL routers to dialup clients. (In ...
Is it possible for users logging on to a NT Domain or Active Directory to be automatically allocated certain access rights through a Pix for the duration of their session logged into their workstation? I know that something close to this can be done ...
Can a Pix talk directly to Windows NT Domain or Active Directory for user authentication purposes? In other words can it do it *without* connecting via a RADIUS or TACACS program placed in between (such as Cisco Secure ACS)?
Thanks for your help.Do you know what happens if more than one pre-shared key exists on any particular IP address range? I.e. Two ranges might overlap.For example:-isakmp key 123456 address 0.0.0.0 netmask 0.0.0.0isakmp key abcdef address 192.168.0.0...
But isn't/aren't pre-shared key(s) for the dynamic VPN clients missing? There are pre-shared keys for the static peers but I can't see one for the dynamic VPN clients.
I'm looking to do something not totally dissimilar, but in my case I am concerned about controlling outgoing access (i.e. to the Internet) for network users. They will be going through a Pix, but the main difficulty is that I want their indiviual lev...
Looks like Cisco Secure ACS won't do it. I've read the PDF manual and, as far as I can see, Cisco Secure ACS can accept authentication/authorization requests supplied to it from an 'AAA client' (such as a Pix or router). However, I need the authentic...
Thanks, I'll look it and see if it does.To put it another way, the software will need to dynamically update the security settings on the Pix for that user's workstation's IP address for the duration of the user's session on the workstation.
