RE: [Help-gnu-radius] Experiences with cisco VPN 3000

help-gnu-radius

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Help-gnu-radius] Experiences with cisco VPN 3000

From:	Gerald
Subject:	RE: [Help-gnu-radius] Experiences with cisco VPN 3000
Date:	Wed, 19 Nov 2003 13:07:22 -0500 (EST)

On Wed, 19 Nov 2003, Dan Didier wrote:

> How will it handle groups?

> If a user is assigned to a group I am assuming it will be through the
> radius server, correct?

>From Cisco:
Authenticating Groups and Users Externally through RADIUS

- External Groups can return Cisco/Altiga attributes if the RADIUS server
  supports Vendor Specific Attributes (VSAs).

# gnu-radius does support VSAs.

- Any Cisco/Altiga attributes NOT returned by RADIUS default to the values
  in the Base Group.

- If the RADIUS server does NOT support VSAs, then ALL attributes default
  to the Base Group attributes.

http://www.cisco.com/en/US/products/hw/vpndevc/ps2284/products_tech_note09186a00800948c1.shtml

also of use since you'll probably need to write a dictionary file:

http://www.cisco.com/en/US/products/hw/vpndevc/ps2284/products_tech_note09186a0080094e96.shtml

Gerald

[Prev in Thread]

Current Thread

[Next in Thread]

[Help-gnu-radius] Experiences with cisco VPN 3000, Dan Didier, 2003/11/19
- Re: [Help-gnu-radius] Experiences with cisco VPN 3000, Gerald, 2003/11/19
  - Re: [Help-gnu-radius] Experiences with cisco VPN 3000, Sebastian Hagedorn, 2003/11/19
- RE: [Help-gnu-radius] Experiences with cisco VPN 3000, Dan Didier, 2003/11/19
  - RE: [Help-gnu-radius] Experiences with cisco VPN 3000, Gerald <=
- RE: [Help-gnu-radius] Experiences with cisco VPN 3000, Dan Didier, 2003/11/19

Prev by Date: RE: [Help-gnu-radius] Experiences with cisco VPN 3000
Next by Date: [Help-gnu-radius] Make Failed!
Previous by thread: RE: [Help-gnu-radius] Experiences with cisco VPN 3000
Next by thread: RE: [Help-gnu-radius] Experiences with cisco VPN 3000
Index(es):
- Date
- Thread