Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

AAA VPN configuration

Status
Not open for further replies.

brianinms

MIS
Jul 16, 2007
1,703
US
On a pix could I use .......

aaa-server partnerauth protocol radius
aaa-server partnerauth (inside) host 192.168.100.13 cisco123
aaa-server partnerauth (outside) host 192.168.100.13 cisco123
timeout 5

.. and the traffic traverse a site-to-site VPN ?

Basically I have a 5510 at the host and a 506e running 6.35 at the branch. I want to terminate a VPN for remote access to the 506 and have it authenticate it on an IAS box at the main location. Currently the branch and host are connected with MPLS and the site to site vpn is merely for failover. Thus I want to try to authenticate internally first and then try "externally".

Additionally is there any way to make a vpn group authenticate via radius and then if it fails to authenticate locally? I am use to ASA's and have the functionality there.

Thanks.
 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top