Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
545
Views
0
Helpful
1
Replies

username and password after group name authentication

rpalacio
Level 1
Level 1

‎04-19-2004 01:02 PM

i am using the vpn client ver 3.66 for xp..the vpn server is on a pix 515..the vpn group was able to be authenticated but prompts me for a username and password after that..which username and password is this and how will i configure it..

thanks a lot

Labels:
0 Helpful
1 Reply 1

gfullage
Cisco Employee
Cisco Employee

‎04-19-2004 03:35 PM

This username can be stored locally on the PIX, or on a separate Radius or TACACS server. Check your PIX config and you'll have something like this:

crypto map client authentication

AAA-server protocol tacacs+

AAA-server (outside) host 172.18.124.111

The "tacacs+" could also be "radius" or "LOCAL", depending on where you want to store your usernames. If you want to store them locally on the PIX, just do the following:

AAA-server protocol LOCAL

username password

You can have as many username commands as you have users.

Of course if you don't want to do any user authentication (not recommended), then do:

no crypto map client authentication

and you won't be prompted at all. This is inherently insecure though, if someone steals one of your laptops with the VPN client on it they'll have open access to your network.

0 Helpful
Customers Also Viewed These Support Documents