Remote Access VPN on Cisco ASA5520

denver218
denver218 used Ask the Experts™
on
I just acquired a customer who has a Cisco ASA5520.  They use this ASA for all site-to-site and remote access VPNs.  I have a question about the remote access VPN setup.  I see that there are 5 VPN groups configured on this ASA.  I can log into all five groups just fine using the Cisco VPN client, but all I need to connect is the group name and password, it does not prompt for a username a password.  Below is an example of how one of the groups are setup:

tunnel-group VPNGROUP1 type ipsec-ra
tunnel-group VPNGROUP1 general-attributes
 address-pool ippool
 authentication-server-group none
 default-group-policy VPNGROUP1
tunnel-group VPNGROUP1 ipsec-attributes
 pre-shared-key *

What part of this configuration is allowing them to just log in using the group name a password?  I'm used to the cisco vpn client also prompting for a username and password.  Thanks.
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Senior infrastructure engineer
Top Expert 2012
Commented:
That would be: authentication-server-group none

Here you normally define how/against what host authentication is done.

Author

Commented:
Thanks.  This ASA is running an older version 7.0(6), and they use the Cisco VPN Client for Remote Access.  Do newer ASA Versions still support the Cisco VPN Client.  I know they are pushing AnyConnect because the Cisco VPN Client is reaching EOL.  
Ernie BeekSenior infrastructure engineer
Top Expert 2012

Commented:
No problem, it still works. I'm connecting to >8.3 with the client myself.

Author

Commented:
Thanks.
Ernie BeekSenior infrastructure engineer
Top Expert 2012

Commented:
You're welcome :)
Thx for the points.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial