Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
852
Views
0
Helpful
3
Replies

AAA server assign ip address for IPsec per users

yzhang1
Level 1
Level 1

‎10-28-2004 05:59 PM - edited ‎02-21-2020 01:25 PM

I have Cisco ACS 3.0 as AAA server, and I have Cisco 7206VXR as VPN concentrater,and VPN client is 3.X for WIN XP. I want to known How assign static ip address for per vpn client(not using ip pool)?

Labels:
0 Helpful
3 Replies 3

sachinraja
Level 9
Level 9

‎10-30-2004 02:08 AM

Hello..

configure the router to forward all the authentication requests of the client to the tacacs server. configure the user options on the tacacs server to assign static ip for the user.

On the router configure :

crypto map clientmap client authentication list userauthen

crypto map clientmap isakmp authorization list groupauthor

aaa authentication login userauthen group tacacs+

aaa authorization network groupauthor group tacacs+

ON the ACS server:

after adding the user, under the client IP address assignment , select the option assign static IP addresses and the put an ip address there.

Try this and let us know !!

0 Helpful

t-tst
Level 1
Level 1
In response to sachinraja

‎10-31-2004 06:18 PM

but if we used is a pix not a router, there is no authorization we can configure.

How to assign a static ip to vpn client.

thanks!

Regards

0 Helpful

yzhang1
Level 1
Level 1
In response to sachinraja

‎11-01-2004 06:44 PM

Many thanks for your response!!!

Yes,I have done it, We know VPN client will get ip address from ACS serser during Xauth,But fist authen about IKE groupname & preshare key is Failure, I have set the IKE groupname & preshare in ACS server, But failure still, What's do you think about it ?

0 Helpful
Customers Also Viewed These Support Documents