IAS to authenticate Cisco VPN Clients & Cisco Device Management

Discussion in 'Windows Networking' started by CSCee44444, Aug 28, 2005.

  1. CSCee44444

    CSCee44444 Guest

    Hi,
    I have spent days reading about how to accomplish this but it's not working...

    I need to use MS IAS 2003 to authenticate both Cisco VPN clients (connecting
    to an IOS router from the Internet) and vty (SSH/Telnet) access to Cisco
    devices for management.

    I have two Remote Access Policies, both have only one condition (a Windows
    group in AD).

    The first policy is for Cisco Priv Level 15 access (vty) and has a profile
    for PAP/SPAP authentication and a Cisco-AV-pair for "shell:priv-lvl=15" and
    Service-Type Login.

    For the second policy (for Cisco VPN Clients), I don't really know what to
    put in...

    How would I differenciate the two policies using conditions? I want the
    first policy to only grant access to manage Cisco devices... and the second
    policy to only grant access to Cisco VPN Clients. How?
     
    CSCee44444, Aug 28, 2005
    #1
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.