Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
We're provisioning a 2821 with IOS 15.1(4)M5 ADVSECURITYK9 for Easy VPN/classic client access. Everything works fine with local authentication. When we switch to radius authentication, the router sends the group name to the radius server instead of p...
We have a 2811 running NAT between 2 FE ports (1 inside, 1 outside) and several serial (inside) and the same outside FE port. There are ~100 static NAT entries in the table for devices that need a specific identity on the outside and 1 pool to catch ...
Anyone run into this problem? I have a 515E using 6.3.1, tested also with 6.3.3.WebSense is my url server.I configure url filtering using the commands:url-server (inside) vendor websense host 192.168.1.4 timeout 5 protocol TCP version 1filter url htt...
I have a customer testing Polycom video conferencing over the Internet through their PIX 506. They have a single public IP address so all outbound traffic is PAT. When they initiate the connection the recipient sees their video feed but they see none...
I have a customer testing Polycom video conferencing over the Internet through their PIX 506. They have a single public IP address so all outbound traffic is PAT. When they initiate the connection the recipient sees their video feed but they see none...
Solved by TAC.Since Microsoft NPS RADIUS does not support storage of shared secret, changed the isakmp authorization line to use local authenticationcrypto isakmp profile vpn_admin_profile match identity group vpn_admin client authentication list...
Removing the "client configuration group" line causes phase 1 negoation to fail.The group information is correct as the VPN client can connect when the authentication and authorization lines are changed back to reference local.The abbreviated router ...
I updated the configuration with the following and the behavior does not change. The VPN client still does not prompt for user credentials:aaa group server radius radius-group server 192.168.1.50!aaa authentication login default group radius-groupaaa...
