cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
512
Views
0
Helpful
2
Replies

ASA500: migrate from Cisco VPN Client to native Windows VPN connection

shead1111
Level 1
Level 1

We have a need at this time for only one of our computers to allow 2 Windows users to connect to our network thru VPN (it's a work share situation, they will not both be logged on the same day). We happily use the old Cisco VPN client for everyone else. But the old client will not install twice on the same machine, nor is there the option to "install for any user".

 

Thinking to KISS and not invest at this point, trying to get Windows native VPN to work ?

What combination of settings will work in its properties->security tab to do the same IKE IPsec over UDP(NAT) and with group auth along with the individual's login?

... (so no reconfiguration is needed in the ASA?)

 

Or are one of the other "type of VPN" will need minimal change on the ASA ?

 

 

2 Replies 2

johnd2310
Level 8
Level 8

Hi,

 

You could look at L2TP over IPSec on the ASA. Users can then use the native windows client.

 

Thanks

John

**Please rate posts you find helpful**

Thank you.

I found this: http://www.cisco.com/c/en/us/td/docs/security/asa/asa72/configuration/guide/conf_gd/l2tp_ips.html#wp1041306
Will this have any effect on the rest of the users?

Step 1 Specify IPSec to use transport mode rather than tunnel mode with the mode keyword of the crypto ipsec transform-set command:

hostname(config)# crypto ipsec transform-set trans_name mode transport