IAS + Cisco VPN .. FQUN not correct

[pcnetgeek]

Hello ..

We recently went from a cisco 506e to a cisco asa 5520.. The 506e handled all VPN connections with no problems.. since implementing this asa5520 connections fail with the message.

Reason-Code = 16
Reason = Authentication was not successful because an unknown user name or incorrect password was used.

odd thing we noticed in logs is that the previous FQUN was

domain.com/ou/ou/username

that worked .. however, now its

domain/username

notice that the domain.com is no longer and its just the alias for the domain.

is this a cisco issue or something on the 2k3 server that needs to be corrected and reconfigured?

Auth Type is PAP


any assistance would be greatly appreciated.


Lenny :.
IT Guy :.
.::Get in where you fit in and where you need to fit in::.

 

[pcnetgeek]

i know its before 24hrs .. but it'd be great to hear some feedback from some folks..

so here it goes..

BuMp



Lenny :.
IT Guy :.
.::Get in where you fit in and where you need to fit in::.

 

[NetIntruder]

I'm about to pilot an ASA install, so i'm not yet too sure of the architecture. First, is there a reason for using PAP? Can you change this to something a little more secure? What other options do you have on the ASA?

~Intruder~
CEH, CISSP, MCSA/MCSE 2000/2003