I am trying to configure Cisco PIX to accept vpdn connections that will be authenticated by the Cisco ACS after looking up username and profile details in Active Directory.
I am seeing failed attempts on the ACS - so I think the config is ok (below)
access-list acl_in permit ip 10.xxx.xxx.0 255.255.255.0 10.xxx.xxx.0 255.255.255.0
access-list acl_in permit ip 10.xxx.xxx.0 255.255.252.0 10.xxx.xxx.0 255.255.255.0
ip local pool pptp-pool 10.xxx.xxx.xxx-10.xxx.xxx.xxx
aaa-server AuthInbound protocol radius
aaa-server AuthInbound (inside) host 10.xxx.xxx.xxx <key is here> timeout 5
sysopt connection permit-pptp
vpdn group 1 accept dialin pptp
vpdn group 1 ppp authentication pap
vpdn group 1 ppp authentication chap
vpdn group 1 ppp authentication mschap
vpdn group 1 ppp encryption mppe auto
vpdn group 1 client configuration address local pptp-pool
vpdn group 1 client authentication aaa AuthInbound
vpdn enable outside
I am not sure where to go next - does anyone know of a dcument that explains this type of configuration or how to implement it?
Free Guide: Managing storage for virtual environments
Complete a brief survey to get a complimentary 70-page whitepaper featuring the best methods and solutions for your virtual environment, as well as hypervisor-specific management advice from TechTarget experts. Don’t miss out on this exclusive content!