About bhenning

bhenning · 11-06-2013

I've been trying to configure a minimum password length policy on a 2960 switch running 15.0(2)SE2. The command "security passwords min-length x" that is so often offered as a solution for IOS switches and routers does not exist in 15.0SE for switche...

bhenning · 05-17-2013

I'm on an ASA 5510 running 8.2(5)41. I have clientless WebVPN configured to authenticate against an RSA RADIUS server, which has users assigned to RADIUS Class attribute 25 to match the group-lock values assigned to each ASA group-policy. This of cou...

bhenning · 11-19-2001

It seems there is no point to use diversity with two omnidirectional antenna's on an access point since the AP will only use the antenna with the best reception, is that a safe bet? Will the 350AP work fine if I configure it to use only one antenna ...

bhenning · 11-16-2001

I'm installing 350AP's with external 5.2 dBi omni antenna's. Two questions: 1.) How far apart should I mount the right and left anntenna's on the drop ceiling crossmember? (six inches?)2.) How should I configure the access point Rx and Tx settin...

bhenning · 05-24-2013

Thanks for offering the help. I hadn't made any changes to the DfltAccessPolicy (all default settings), and same setup was working fine on another ASA for IPSec remote access VPN. Per my last post below, it's working now, with no explanation of why. ...

bhenning · 05-23-2013

As much as I hate fluke issues, this is working now. The debug output from my original post above proved the Class attribute 25 coming back from the RADIUS server was different from the group value configured on the ASA policy, yet the ASA was allowi...

bhenning · 05-23-2013

Well, I got this to work, but I don't like the method. I had to add local user accounts and configure local attributes with group-lock. For example:username MyUser password MyPasswordusername MyUser attributes group-lock value stp.ClientDRC service-t...

bhenning · 12-31-2001

I finally did get XP's EAP to work with Funk's SBR last week with SBR v3.0 only, and only using the native SBR user database (vs. an NT or SQL Server user database). If anyone is interested, it's a very simple setting in the eap.ini file under the S...

bhenning · 12-16-2001

I'm running into the same problem that you are describing, and I can't find any documentation at all for configuring EAP (not LEAP) with a 350 card and XP. I am using Funk's Steel Belted RADIUS for our central authentication vs. ACS.I have tried eve...

Member Since	‎11-16-2001 02:47 PM
Date Last Visited	‎09-06-2020 08:11 AM
Posts	11
Total Helpful Votes Received	5

User Statistics

User Activity

AAA Minimum Password Length Policy on Switch IOS 15.0 Only Works with Level 7 Passwords

Group-lock not working with WebVPN and RADIUS authentication

Can I use one omni antenna with a 350?

Rx/Tx Setting for 350AP and 5.2dBi Omni Antenna's

Group-lock not working with WebVPN and RADIUS authentication

Group-lock not working with WebVPN and RADIUS authentication

Group-lock not working with WebVPN and RADIUS authentication

Re: Windows XP, EAP, 350AP, and ACS

Re: Windows XP, EAP, 350AP, and ACS