Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
274
Views
0
Helpful
2
Replies

PIX site to site vpn and MS IAS

dchu04
Level 1
Level 1

‎03-13-2005 03:49 PM - edited ‎02-21-2020 01:39 PM

I have setup site to site VPN connections using PIX firewall. I am trying to setup cut-through proxy to control HTTP access from inside each site. When I setup MS IAS for authentication, I notice that radius must be setup for PAP (clear text), obviously a security risk when users are authenticating through the firewall over the Internet. Is there a way to configure the pix to authenticate to the IAS server through the site to site VPN?

Note: I don't want to buy ACS server.

Labels:
0 Helpful
2 Replies 2

jmia
Level 7
Level 7

‎03-14-2005 12:06 AM

David,

Have you read the following document as a guide :

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00800b6099.shtml

Jay

0 Helpful

dchu04
Level 1
Level 1
In response to jmia

‎03-14-2005 08:15 PM

In the document it uses PAP as follow

"Click Edit Profile and go to the Authentication tab. Under Authentication Methods, make sure only Unencrypted Authentication (PAP, SPAP) is checked."

Well, it is exactly what I am trying to avoid.

0 Helpful
Customers Also Viewed These Support Documents