Hello,
Currently I have an IAS server authenticating VPN users to my domain. Users
get access through my PIX firewall and then they're authenticated by my
internal IAS server; this setup is working nicely.
Now, I want to enable RADIUS authentication on my PIX, so the admins can use
their AD accounts to do admin work on the PIX. But, I'd like to use the
'same' IAS server as the VPN users. Is this possible or do I need a different
IAS server to authenticate the PIX admins?
I tried using the same IAS server but now my VPN users can log on to the
PIX; which is what I don't want.
I tried creating different rules, but it appears that the rule I create is
bypassed and only the previous rules (VPN rules) get applied instead.
Any ideas will be appreciated.
Currently I have an IAS server authenticating VPN users to my domain. Users
get access through my PIX firewall and then they're authenticated by my
internal IAS server; this setup is working nicely.
Now, I want to enable RADIUS authentication on my PIX, so the admins can use
their AD accounts to do admin work on the PIX. But, I'd like to use the
'same' IAS server as the VPN users. Is this possible or do I need a different
IAS server to authenticate the PIX admins?
I tried using the same IAS server but now my VPN users can log on to the
PIX; which is what I don't want.
I tried creating different rules, but it appears that the rule I create is
bypassed and only the previous rules (VPN rules) get applied instead.
Any ideas will be appreciated.