Using Microsoft RADIUS and a Cisco 1841 router/vpn

tsuthar used Ask the Experts™
Hello experts,

I want to move our VPN accounts from the router and use RADIUS authentication from our MS Active Directory.  We only have about 18 accounts, so that's not too much of a hassle.  

All I want from the Microsoft server to say, is that this user is ok to be on the VPN.  

This is what I have set up:

1.  Cisco 1841 receives a request and passes it to the MS server
2.  MS looks to see if the user is in a particular group (ie. VPN Users)
3.  If they are, MS gives the green light to the Cisco 1841.
4.  Cisco 1841 allows the user to sign on.

Are there any concerns I should be aware of?  
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Top Expert 2009
The setup is actually quite simple and should work as you have it outlined.  Once you have the 1841 RADIUS configuration in place, add a client (the 1841) in IAS, specify the group to match in the Remote Access Policy and set authentication to unencrypted (PAP).


It looks like it does work, and yes it was quite simple.  I just didnt know if I was missing something.  

Apparently not.  

Points for you.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial