From: wing_lam@jossynergy.com
Date: Thu Aug 14 2003 - 14:14:16 GMT-3
Hi group,
I have a problem with ACS.
My ACS has two authentication client, one is VPN3005 and the other is a
Cisco 2509 as a async modem pool. Both of them running radius protocol.
The ACS is installed in Win2K,it reference to the AD for the two clients
authentication.
The ACS will send IETF radius attribute Filter-id: "101.in", where I have
define the access-list 101 in the Cisco 2509 so that this access-list will
bind to different user when they login.
Thne problem is if I defined the "Filter-id" attribute, the same user
cannot login VPN3005 (authentication fail), but if I delete this attribute;
they can login.
I just wnat to know in this situation, if I want the same user-id login
Cisco 2509, access-list can be downloaded, but when the same user id is
used in VPN3005 authen, this attribute no longer needed. Can ACS customized
so that different authentication client will have different profile while
using same user-id?
Thx,
BBD (Big Black Dog)
DISCLAIMER:- This email is confidential and intended only for the use of
the individual or entity named above and may contain information that is
privileged. If you are not the intended recipient, you are notified that
any dissemination, distribution or copying of this email is strictly
prohibited. If you have received this email in error, please notify us
immediately by return email or telephone and destroy the original message.
Thank you.
This archive was generated by hypermail 2.1.4 : Tue Sep 02 2003 - 18:53:59 GMT-3