Using Radius filter id attribute for VPN clients

Discussion in 'Cisco' started by Michael Flanigan, Jun 30, 2007.

  1. I have a 6509 MSFC with VPN service module handling VPN client access,
    authenticated by an RSA RADIUS server with tokens. I have tried to get the
    MSFC to recognize attribute 11, filter ID, but, although it is clearly
    there in the debug, the acl seems to have no effect. I have

    aaa authorization network groupauthor local
    specified for group shared-secret authentication. I also have

    aaa authorization network default group radrsa if-authenticated
    aaa authorization configuration default group radrsa

    for handling the filter attribute. I have tried with and without the 'if-
    authenticated'. I suspect from the debug that the local method specified
    for shared-secret handling is overriding the other specifications. Has
    anyone been able to use the aaa filter attribute with local shared secrets?
    Any other ideas as to the nature of the problem would be appreciated. I
    can supply debug and config as needed. Thanks

    --
    Posted via a free Usenet account from http://www.teranews.com
     
    Michael Flanigan, Jun 30, 2007
    #1
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. Arch Willingham
    Replies:
    1
    Views:
    2,320
    Carl DaVault [MSFT]
    Jun 9, 2005
  2. eddiec
    Replies:
    2
    Views:
    870
    Guest
    Apr 20, 2004
  3. Chino
    Replies:
    1
    Views:
    518
    Twpsyn
    Jan 29, 2007
  4. ashjas
    Replies:
    8
    Views:
    1,392
  5. Giuen
    Replies:
    0
    Views:
    1,155
    Giuen
    Sep 12, 2008
Loading...

Share This Page