03-13-2005 03:49 PM - edited 02-21-2020 01:39 PM
I have setup site to site VPN connections using PIX firewall. I am trying to setup cut-through proxy to control HTTP access from inside each site. When I setup MS IAS for authentication, I notice that radius must be setup for PAP (clear text), obviously a security risk when users are authenticating through the firewall over the Internet. Is there a way to configure the pix to authenticate to the IAS server through the site to site VPN?
Note: I don't want to buy ACS server.
03-14-2005 12:06 AM
David,
Have you read the following document as a guide :
Jay
03-14-2005 08:15 PM
In the document it uses PAP as follow
"Click Edit Profile and go to the Authentication tab. Under Authentication Methods, make sure only Unencrypted Authentication (PAP, SPAP) is checked."
Well, it is exactly what I am trying to avoid.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide