Hi Everyone,
I have pix 5.3(2) set up for pptp. When I have the authentication set to local it works great. I set up IAS and the aaa-server portion of the pix and changed the authentication to use the aaa-server group.
When I VPN in from a win2k machine I get a "Error: 718" on the windows client side.
On my IAS server event log, I see that I was granted access. "User adi-cs\adubla was granted access."
It's like the "OK" from IAS doesn't properly get to the PIX. I find the following messages in the PIX log:
603102: PPP virtual interface 7 - user: adi-cs\adubla aaa authentication started
109002: Auth from 0.0.0.0/0 to 10.10.10.2/0 failed (server 172.10.1.10 failed) on interface outside
Does anyone have any ideas on how to fix this?
I have pix 5.3(2) set up for pptp. When I have the authentication set to local it works great. I set up IAS and the aaa-server portion of the pix and changed the authentication to use the aaa-server group.
When I VPN in from a win2k machine I get a "Error: 718" on the windows client side.
On my IAS server event log, I see that I was granted access. "User adi-cs\adubla was granted access."
It's like the "OK" from IAS doesn't properly get to the PIX. I find the following messages in the PIX log:
603102: PPP virtual interface 7 - user: adi-cs\adubla aaa authentication started
109002: Auth from 0.0.0.0/0 to 10.10.10.2/0 failed (server 172.10.1.10 failed) on interface outside
Does anyone have any ideas on how to fix this?
