Re: WebVPN and Radius Server

emmanuel.shoroma · ‎05-05-2010

Hi,

I have configure the webvpn on ASA 5520 using ASDM version 5.2. It works perfect with local authentication but it is not working with Radius. The radius server test is OK on the aaa server configuration page. however, when I try to log in with web access, I get a login failure. the suprising part is that even though I get a login failure, it shows authenticated on the radius server and also the syslog message of the ASA show authentication successfull.

Please assist.

Regards,

spremkumar · ‎05-05-2010

Hi

Are you able to ping the radius server from the PIX and vice versa?

regds

emmanuel.shoroma · ‎05-05-2010

Yes. that's 100%. I can even get a 100% success when doing radius test.

Pravin Phadte · ‎05-05-2010

may be somthing to do with authorization.

Check the settings in asdm again.

emmanuel.shoroma · ‎05-05-2010

Hi,

I just checked again. I have no authorization server configure. I just have the authentication server. I use the save authentication server form IPSec with VPN client software and it works perfect. I also use the same Server for device administration login and it also works perfect.

the only problem is with webvpn. it shows authenticated on the server, but it displays login fail message on the web browser and doesn't connect. however, the ASA syslog shows authentication successfull. see for user - Temporal

not sure what's happening here. I also created a group alias to make sure webvpn users connect to the correct Tunnel group. if I take the same tunnel group and point it to local authentication, it works perfect. it is only when I try radius that it gives problems.