?
Solved

Using Microsoft RADIUS and a Cisco 1841 router/vpn

Posted on 2006-11-06
2
Medium Priority
?
688 Views
Last Modified: 2012-06-27
Hello experts,

I want to move our VPN accounts from the router and use RADIUS authentication from our MS Active Directory.  We only have about 18 accounts, so that's not too much of a hassle.  

All I want from the Microsoft server to say, is that this user is ok to be on the VPN.  

This is what I have set up:

1.  Cisco 1841 receives a request and passes it to the MS server
2.  MS looks to see if the user is in a particular group (ie. VPN Users)
3.  If they are, MS gives the green light to the Cisco 1841.
4.  Cisco 1841 allows the user to sign on.

Are there any concerns I should be aware of?  
0
Comment
Question by:tsuthar
2 Comments
 
LVL 43

Accepted Solution

by:
JFrederick29 earned 500 total points
ID: 17885575
The setup is actually quite simple and should work as you have it outlined.  Once you have the 1841 RADIUS configuration in place, add a client (the 1841) in IAS, specify the group to match in the Remote Access Policy and set authentication to unencrypted (PAP).
0
 
LVL 1

Author Comment

by:tsuthar
ID: 17889269
It looks like it does work, and yes it was quite simple.  I just didnt know if I was missing something.  

Apparently not.  

Points for you.
0

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

It happens many times that access list (ACL) have to be applied to outgoing router interface in order to limit some traffic.This article is about how to test ACL from the router which is not very intuitive for everyone. Below scenario shows simple s…
In the world of WAN, QoS is a pretty important topic for most, if not all, networks. Some WAN technologies have QoS mechanisms built in, but others, such as some L2 WAN's, don't have QoS control in the provider cloud.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

807 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question