IAS
From: Chris Wheeler (cwheeler@netimage.net)
Date: 06/19/02
- Next message: Alun Jones: "Re: Unable to assign SeTcbPrivilege (SE_TCB_NAME)!?!?"
- Previous message: Chris Wheeler: "IAS and Cisco PIX"
- In reply to: Dan Locey: "IAS"
- Next in thread: x y: "Re: IAS"
- Reply: x y: "Re: IAS"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Chris Wheeler" <cwheeler@netimage.net> Date: Wed, 19 Jun 2002 07:46:09 -0700
Dan,
Are you using the NT/W2K user/group accounts to
authenicate the users to the PIX/routers?
Do you know where I can find good documentation on this
type of setup? I want users who go out to the Internet
to get Authenticated via the IAS when they hit the PIX.
Thanks,
Chris
>-----Original Message-----
>I have a regular NT infrastructure with several W2K
>servers thrown in. I loaded IAS on one of my W2K
servers
>as a RADIUS server. I am authenticating user logins to
my
>Cisco routers and PIX.
>
>My question is, PIX seems to be sending requests in
PAP.
>I need to fully understand the use of the session keys
in
>the RADIUS client/server relationship to ensure that I
am
>not doing cleartext. If there is a way to specify that
>client requests from my PIX be sent in CHAP or MS-CHAP,
I
>would appreciate that.
>
>Also, I added a special user to my NT domain, after
>setting up the RADIUS server and sucessfully
>authenticating an existing user. After forcing a domain
>sync and waiting about 4 hours, the new user is still
not
>recognized. Where does the IAS pull its info from? The
>PDC/BCD of the domain, or does it go into BCD emulation
>with its own database?
>
>Please send all responses directly to me, if you could,
at
>danl@ascinet.com
>.
>
- Next message: Alun Jones: "Re: Unable to assign SeTcbPrivilege (SE_TCB_NAME)!?!?"
- Previous message: Chris Wheeler: "IAS and Cisco PIX"
- In reply to: Dan Locey: "IAS"
- Next in thread: x y: "Re: IAS"
- Reply: x y: "Re: IAS"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
