Announcement

Collapse
No announcement yet.

Cisco VPN client - AD authentication

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Cisco VPN client - AD authentication

    Hi there.

    What is the simplest way to implement a Cisco VPN soloution that is integrated with Active Directory?

    Meaning, a small number of users, using the Cisco VPN Client, along with their Windows Active Directory credentials to to connect to a corporate network.

    How do you make the front end device - Cisco PIX firewall, or VPN enabled router talk to active directory?

    What do you need minimum?

  • #2
    Re: Cisco VPN client - AD authentication

    Hi SmileyFella,

    Yes, this is doable with the following, minimally,

    - cisco router with ipsec/security code (contains vpn sw)
    - configure vpn on router and enable authentication using RADIUS
    - Windows Server with IAS, pointing to either local account database or AD

    You could substitute the router for a PIX, ASA, or VPN concentrator.

    The clients connecting could use the Cisco VPN client but the built in Windows client works fine too.

    I hope that helps. If you have more questions, let me know

    Thanks,
    David Davis - Petri Forums Moderator & Video Training Author
    Train Signal - The Global Leader in IT Video Training
    TrainSignalTraining.com - Free IT Training Products
    Personal Websites: HappyRouter.com & VMwareVideos.com

    Comment


    • #3
      Re: Cisco VPN client - AD authentication

      Thanks David.
      That is pretty straight forward.

      Ok, so after you enable RADIUS authentication on the router, how do you tell it where the Windows IAS server is?

      Paul

      Comment


      • #4
        Re: Cisco VPN client - AD authentication

        Hi Paul,

        Well, here is the Cisco Security RADIUS configuration task list and some examples:
        Here is the example you need (after some searching):
        http://www.cisco.com/en/US/tech/tk80...8009485e.shtml

        Here are some more...
        http://www.cisco.com/univercd/cc/td/....htm#wp1000937
        http://www.cisco.com/univercd/cc/td/....htm#wp1001308
        http://www.cisco.com/en/US/tech/tk59...80093c81.shtml
        http://www.cisco.com/en/US/tech/tk58...ocol_home.html
        http://www.parkansky.com/tutorials/pptp.htm

        Thanks for your post!
        David Davis - Petri Forums Moderator & Video Training Author
        Train Signal - The Global Leader in IT Video Training
        TrainSignalTraining.com - Free IT Training Products
        Personal Websites: HappyRouter.com & VMwareVideos.com

        Comment


        • #5
          Re: Cisco VPN client - AD authentication

          Go on my website - www.briandesmond.com and click the Cisco tag on the left. It's all laid out for you.
          Thanks,
          Brian Desmond
          Microsoft MVP - Directory Services
          www.briandesmond.com

          Comment

          Working...
          X