Hi, Is it possible, without the use of an ACS server, to have admin users autheticate via RADIUS to manage an ASA and then use the same RADIUS server to authenticate VPN users. At the moment, in the lab, i am seeing the VPN users being able to login to the firewall which I dont want and the admin users can access the VPN which again I don't want. I can get the RADIUS Server to send back attributes but how do i get the ASA to acknowledge them and then grant or disallow access (some form of authorization)?
-- Regards Hughie
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
