Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Using Microsoft RADIUS and a Cisco 1841 router/vpn

Posted on 2006-11-06
2
Medium Priority
?
684 Views
Last Modified: 2012-06-27
Hello experts,

I want to move our VPN accounts from the router and use RADIUS authentication from our MS Active Directory.  We only have about 18 accounts, so that's not too much of a hassle.  

All I want from the Microsoft server to say, is that this user is ok to be on the VPN.  

This is what I have set up:

1.  Cisco 1841 receives a request and passes it to the MS server
2.  MS looks to see if the user is in a particular group (ie. VPN Users)
3.  If they are, MS gives the green light to the Cisco 1841.
4.  Cisco 1841 allows the user to sign on.

Are there any concerns I should be aware of?  
0
Comment
Question by:tsuthar
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 43

Accepted Solution

by:
JFrederick29 earned 500 total points
ID: 17885575
The setup is actually quite simple and should work as you have it outlined.  Once you have the 1841 RADIUS configuration in place, add a client (the 1841) in IAS, specify the group to match in the Remote Access Policy and set authentication to unencrypted (PAP).
0
 
LVL 1

Author Comment

by:tsuthar
ID: 17889269
It looks like it does work, and yes it was quite simple.  I just didnt know if I was missing something.  

Apparently not.  

Points for you.
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

It happens many times that access list (ACL) have to be applied to outgoing router interface in order to limit some traffic.This article is about how to test ACL from the router which is not very intuitive for everyone. Below scenario shows simple s…
Getting hacked is no longer a matter or "if you get hacked" — the 2016 cyber threat landscape is now titled "when you get hacked." When it happens — will you be proactive, or reactive?
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

636 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question