Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
747
Views
0
Helpful
3
Replies

VPN with Secure ACS/IP Address Pool

rlesyshyn
Level 1
Level 1

‎05-09-2001 01:49 PM - edited ‎02-21-2020 11:20 AM

We have the following VPN topology working successfully:

Redundant PIX520 Firewalls (IOS 5.2.1)

VPN Client 1.1

Crypto dynamic-map setting for Corporate VPN users

Local IP address pool

We now want to provide authentication through the Secure ACS (2.6) NT 4 Server and have it assign IP addresses from a pool based upon group membership. We have been successful with the authentication part, but not with IP address assignment from the ACS pool. We have followed all configuration examples on CCO and even have an open TAC Case. Has anyone had success with this implementation? Thanks!

Labels:
0 Helpful
3 Replies 3

j-block
Level 4
Level 4

‎05-15-2001 07:05 AM

What did TAC have to say? I know there were a number of bugs in 5.2(1) so maybe an upgrade would be a place to start.

0 Helpful

rlesyshyn
Level 1
Level 1
In response to j-block

‎05-15-2001 07:51 AM

Hi John,

Thanks for the reply. TAC was basically stumpted...they didn't have any clear-cut examples for configuring the ACS NT Server, other than what's already on CCO. I agree that it could be IOS related. Are you running a version later that 5.2(1)? Here again, I've received conflicting info. from TAC - some engineers say 5.2(5) and to skip 5.3 entirely?? Any thoughts? Thanks!

Rob

0 Helpful

j-block
Level 4
Level 4
In response to rlesyshyn

‎05-17-2001 06:52 AM

We’re using 5.2(5). I never use the latest code especially a (1) or (2) anything.

0 Helpful
Customers Also Viewed These Support Documents