On a pix could I use .......
aaa-server partnerauth protocol radius
aaa-server partnerauth (inside) host 192.168.100.13 cisco123
aaa-server partnerauth (outside) host 192.168.100.13 cisco123
timeout 5
.. and the traffic traverse a site-to-site VPN ?
Basically I have a 5510 at the host and a 506e running 6.35 at the branch. I want to terminate a VPN for remote access to the 506 and have it authenticate it on an IAS box at the main location. Currently the branch and host are connected with MPLS and the site to site vpn is merely for failover. Thus I want to try to authenticate internally first and then try "externally".
Additionally is there any way to make a vpn group authenticate via radius and then if it fails to authenticate locally? I am use to ASA's and have the functionality there.
Thanks.
aaa-server partnerauth protocol radius
aaa-server partnerauth (inside) host 192.168.100.13 cisco123
aaa-server partnerauth (outside) host 192.168.100.13 cisco123
timeout 5
.. and the traffic traverse a site-to-site VPN ?
Basically I have a 5510 at the host and a 506e running 6.35 at the branch. I want to terminate a VPN for remote access to the 506 and have it authenticate it on an IAS box at the main location. Currently the branch and host are connected with MPLS and the site to site vpn is merely for failover. Thus I want to try to authenticate internally first and then try "externally".
Additionally is there any way to make a vpn group authenticate via radius and then if it fails to authenticate locally? I am use to ASA's and have the functionality there.
Thanks.
