05-05-2010 03:19 AM
Hi,
I have configure the webvpn on ASA 5520 using ASDM version 5.2. It works perfect with local authentication but it is not working with Radius. The radius server test is OK on the aaa server configuration page. however, when I try to log in with web access, I get a login failure. the suprising part is that even though I get a login failure, it shows authenticated on the radius server and also the syslog message of the ASA show authentication successfull.
Please assist.
Regards,
05-05-2010 03:37 AM
Hi
Are you able to ping the radius server from the PIX and vice versa?
regds
05-05-2010 03:38 AM
Yes. that's 100%. I can even get a 100% success when doing radius test.
05-05-2010 08:07 AM
may be somthing to do with authorization.
Check the settings in asdm again.
05-05-2010 08:25 AM
Hi,
I just checked again. I have no authorization server configure. I just have the authentication server. I use the save authentication server form IPSec with VPN client software and it works perfect. I also use the same Server for device administration login and it also works perfect.
the only problem is with webvpn. it shows authenticated on the server, but it displays login fail message on the web browser and doesn't connect. however, the ASA syslog shows authentication successfull. see for user - Temporal
not sure what's happening here. I also created a group alias to make sure webvpn users connect to the correct Tunnel group. if I take the same tunnel group and point it to local authentication, it works perfect. it is only when I try radius that it gives problems.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide