Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3890
Views
0
Helpful
2
Replies

VPN + RADIUS EAP-TLS

topsecret
Level 1
Level 1

‎04-01-2011 06:22 AM

Hi all,

Could you tell me whether it is possible to use EAP-TLS and RADIUS (FreeRADIUS) to authenticate users connecting to VPN by Cisco VPN Client?

Thanks all

Labels:
0 Helpful
2 Replies 2

Marcin Latosiewicz
Cisco Employee
Cisco Employee

‎04-04-2011 10:26 AM

Antonio,

VPN client supports only mode-config/xauth since (at least today) IKEv1 and not IKEv2.

That being said it will talk modeconfig to headend and it's the headend checking authentication with radius server.

Marcin

0 Helpful

ROBERTO TACCON
Level 4
Level 4

‎04-04-2011 12:21 PM

Hello,

as IPSec solution check also the new SSL + IPSec client (available for Cisco IOS and Cisco ASA):

Cisco AnyConnect 3.0

(needed license fee: AnyConnect Essentials)

(client available also for Apple iPhone-iTablet and for Samsung new 8.9 and 10 Android Tablet: needed also AnyConnect Mobile license )

http://www.cisco.com/en/US/prod/collateral/vpndevc/ps6032/ps6094/ps6120/qa_c67-622477_ns1049_Networking_Solutions_Q_and_A.html

• IPsec/IKEv2 offers an optimized connection for latency-sensitive traffic when security policies require use of IPsec

if the VPN IPSec solution is for the Cisco firewall ASA check akso the follwing docs:

ASA 8.x Dynamic Access Policies (DAP) Deployment Guide

http://www.cisco.com/en/US/products/ps6120/products_white_paper09186a00809fcf38.shtml

ASA/PIX 8.x: Radius Authorization (ACS) for Network Access using Downloadable ACL with CLI and ASDM Configuration Example

http://www.cisco.com/en/US/partner/products/ps6120/products_configuration_example09186a0080a9eddc.shtml

HTH

Roberto Taccon

0 Helpful
Customers Also Viewed These Support Documents