03-01-2010 08:20 PM
Hi,
Have users connecting into ASA, and they are required to enter Group+Shared secret, but then also a username+password(Which we have added as local accounts on the ASA) - Is there anyway to have just Group+shared secret auth?
Thanks in advance
03-01-2010 09:58 PM
http://www.cisco.com/en/US/docs/security/asa/asa80/command/reference/a2.html#wp1629625
check the above command reference, under related tunnel-group, add "authentication-server-group NONE" to disable user authentication.
03-01-2010 10:19 PM
Thanks Kevin!
Appears that command is now deprecated, new command is:
isakmp ikev1-user-authentication none
Under tunnel-group foo ipsec-attributes
Thanks again for the assistance.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide