Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
814
Views
0
Helpful
3
Replies

persistant IP address for some vpn users

JEFF LAND
Level 1
Level 1

‎09-14-2012 04:55 PM

We are using Anyconnect vpn client (v2.5.3055) to an ASA 5520 (v8.4) in a development environment. We use our corporate Radius server to authenticate users. We have certain users which need have the same IP address everytime they login. As it is configured now, the IP addresses are assigned sequentially from the pool. Is there a way to allow certain users to get the same IP address each time they logon? Thanks.

Labels:
0 Helpful
3 Replies 3

Jennifer Halim
Cisco Employee
Cisco Employee

‎09-14-2012 05:07 PM

Yes, you can use the radius server to assign a specific ip address to the vpn users.

here is the configuration guide on the ASA:

http://www.cisco.com/en/US/docs/security/asa/asa83/configuration/guide/vpnadd.html#wp999685

You would need to make sure that the specific IP is not part of the vpn pool, otherwise 2 users might have the same IP.

0 Helpful

JEFF LAND
Level 1
Level 1
In response to Jennifer Halim

‎09-14-2012 05:37 PM

Hi,

The problem is I don't have admin access to the corp Radius server. Any way to do it on the ASA?

0 Helpful

Jennifer Halim
Cisco Employee
Cisco Employee
In response to JEFF LAND

‎09-14-2012 06:58 PM

Yes, you can do it on the ASA, however, you would need to authenticate to the ASA local database instead of Radius.

Here is a sample configuration for your reference:


http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080a7afb2.shtml

The command is vpn-framed-ip-address
0 Helpful
Customers Also Viewed These Support Documents