August 30, 2008 01:17am pdt

1. RobWill 348,183
2. batry_boy 236,734
3. lrmoore 165,453
4. arnold 118,053
5. dpk_wal 72,695
6. mwecom... 67,324
7. ebjers 44,300
8. MrHusy 43,020
9. mkielar 42,800
10. Qlemo 39,883
11. Voltz-dk 35,470
12. Cyclops3... 34,840
13. TechSoEasy 33,389
14. tigermatt 31,325
15. keith_ala... 27,046
16. trinak96 26,315
17. JFrederic... 21,480
18. from_exp 21,275
19. stuknhaw... 20,075
20. rsivanandan 19,950
21. rowansmith 19,875
22. PeteLong 19,175
23. johnb6767 19,122
24. 2PiFL 18,725
25. RPPreacher 17,950

1. RobWill 1,501,076
2. lrmoore 966,196
3. batry_boy 411,444
4. grblades 214,434
5. rsivanandan 148,916
6. dpk_wal 125,695
7. arnold 120,053
8. calvinetter 112,055
9. TechSoEasy 106,468
10. mwecom... 85,124
11. keith_ala... 81,885
12. MrHusy 76,294
13. tim_holman 75,964
14. Cyclops3... 70,785
15. ewtaylor 68,324
16. Voltz-dk 65,570
17. plemieux72 64,143
18. PeteLong 62,031
19. trinak96 61,165
20. nodisco 58,930
21. Qlemo 55,976
22. blin2000 52,944
23. ebjers 49,300
24. magicomm... 46,625
25. poweruse... 45,641

05.04.2008 at 08:42PM PDT, ID: 23375649

	[x] Attachment Details

Cisco ASA 5510 VPN not authenticating with Win 2k3 IAS.

Asked by mosaicatm in Virtual Private Networking (VPN), Windows 2003 Server, IPSec Security Protocol

Tags: Microsoft, Server 2003 Standard, Using IAS as Radius, Cisco, ASA, 5510 8.0(3), Trying to use IAS as RADIUS authenticator for VPN

I am not sure what is going wrong but I have setup IAS and configured the AAA settings on the ASA. When I run the "test aaa-server..." from the CLI or from ASDM it passes and log entries are created in the System Event Log on the server running IAS. When I use the LOCAL database for authentication it works fine but when I change the "authentication-server-group" from LOCAL to MyRADIUSGroup then it won't authenticate and nothing gets logged on the IAS server. It seems that the request is not being sent from the ASA when I try to use it to authenticate my VPN sessions.

Here is the config on the ASA:

aaa-server MyRADIUSGroup protocol radius
aaa-server MyRADIUSGroup (inside) host 192.168.X.X
key **************

group-policy RAVPN internal
group-policy RAVPN attributes
dns-server value 192.168.X.X
vpn-tunnel-protocol IPSec
split-tunnel-policy tunnelspecified
split-tunnel-network-list value RAVPNSplitTunnel
default-domain value mydomain.local

tunnel-group RAVPN type remote-access
tunnel-group RAVPN general-attributes
address-pool RAVPNPool
default-group-policy RAVPN
password-management
tunnel-group RAVPN ipsec-attributes
pre-shared-key *

Start Free Trial

Keywords: Cisco ASA 5510 VPN not authentic…

	Title
1	Using MS IAS For VPN AAA .. Work…
2	ERROR: Authentication Server not res…
3	Cisco ASA5510 solution remote Ac…
4	IAS PEAP/MSCHAPv2 with Cisco 1…
5	IPSec VPN
6	VPN Tunnel as secondary gateway to t…

Loading Advertisement...

20080716-EE-VQP-32 / EE_QW_2_20070628

Cisco ASA 5510 VPN not authenticating with Win 2k3 IAS.

Asked by mosaicatm in Virtual Private Networking (VPN), Windows 2003 Server, IPSec Security Protocol

Tags: Microsoft, Server 2003 Standard, Using IAS as Radius, Cisco, ASA, 5510 8.0(3), Trying to use IAS as RADIUS authenticator for VPN

About this solution