The account password on ACS for group should be "cisco". The group psk should be in IETF or Cisco VSA AV.
With regards Kings 2012/3/26 Aous SAlloum <[email protected]> > the password can be anything not necessary cisco > but u have to creat the group name in the acs and the password is ur group > password which can be anything > > > > 2012/3/25 "Peter Jørgensen" <[email protected]> > >> Hi guys (and girls) :=) >> >> I have been studying ezVPN external ACS authentication & authoriazation >> for a while and find this subject pretty confusing. >> >> So please help me - is my understanding stated below correct? >> >> >> >> *IOS: * >> >> External *Group* authentication & authorization. >> >> >> >> Group Name Stored as Regular user in ACS. >> >> Name: Matching ezVPN group name >> >> Password: Must be "cisco" >> >> >> >> External *User* authentication - Xauth: >> >> User Name: Configured user name >> >> User Password: Configured password >> >> >> >> RSA: >> >> User Name: Must match CN field in certificate >> >> User Password: Must be “cisco” >> >> >> >> *ASA: * >> >> External *Group* authentication & authorization. >> >> >> >> Group Name Stored as Regular user in ACS. >> >> Name: Matching ezVPN group name (group-policy <name> external...) >> >> Password: Custom specified password (group-policy <name> external...) >> >> >> >> External *User* authentication - Xauth: >> >> User Name: Configured user name >> >> User Password: Configured password >> >> >> >> RSA: >> >> User Name: Must match CN field in certificate >> >> User Password: Must be same as username >> >> >> >> >> >> Regards >> >> Peter Jørgensen >> >> >> >> >> >> >> _______________________________________________ >> For more information regarding industry leading CCIE Lab training, please >> visit www.ipexpert.com >> >> Are you a CCNP or CCIE and looking for a job? Check out >> www.PlatinumPlacement.com >> > > > > -- > Aous Salloum > Networking Engineer > GBM Qatar W.L.L > www.gbm4ibm.com > mobile +974 55396968 > > > _______________________________________________ > For more information regarding industry leading CCIE Lab training, please > visit www.ipexpert.com > > Are you a CCNP or CCIE and looking for a job? Check out > www.PlatinumPlacement.com >
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com Are you a CCNP or CCIE and looking for a job? Check out www.PlatinumPlacement.com
