Re: IAS

From: x y (jamescagney90210@excite.com)
Date: 06/20/02

• Next message: x y: "Re: Exchange Server Joining Domain through Firewall"
• Previous message: x y: "Re: Event viewer problems"
• In reply to: Chris Wheeler: "IAS"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: "x y" <jamescagney90210@excite.com>
Date: Thu, 20 Jun 2002 10:20:10 -0400

This should be documented at cisco.com. Search for RADIUS and or AAA.

"Chris Wheeler" <cwheeler@netimage.net> wrote in message
news:e49d01c217a0$0ce92f50$9ee62ecf@tkmsftngxa05...
> Dan,
> Are you using the NT/W2K user/group accounts to
> authenicate the users to the PIX/routers?
> Do you know where I can find good documentation on this
> type of setup? I want users who go out to the Internet
> to get Authenticated via the IAS when they hit the PIX.
>
> Thanks,
>
> Chris
>
> >-----Original Message-----
> >I have a regular NT infrastructure with several W2K
> >servers thrown in. I loaded IAS on one of my W2K
> servers
> >as a RADIUS server. I am authenticating user logins to
> my
> >Cisco routers and PIX.
> >
> >My question is, PIX seems to be sending requests in
> PAP.
> >I need to fully understand the use of the session keys
> in
> >the RADIUS client/server relationship to ensure that I
> am
> >not doing cleartext. If there is a way to specify that
> >client requests from my PIX be sent in CHAP or MS-CHAP,
> I
> >would appreciate that.
> >
> >Also, I added a special user to my NT domain, after
> >setting up the RADIUS server and sucessfully
> >authenticating an existing user. After forcing a domain
> >sync and waiting about 4 hours, the new user is still
> not
> >recognized. Where does the IAS pull its info from? The
> >PDC/BCD of the domain, or does it go into BCD emulation
> >with its own database?
> >
> >Please send all responses directly to me, if you could,
> at
> >danl@ascinet.com
> >.
> >

• Next message: x y: "Re: Exchange Server Joining Domain through Firewall"
• Previous message: x y: "Re: Event viewer problems"
• In reply to: Chris Wheeler: "IAS"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: C++ RADIUS client ... > authenticate users of my application against an LDAP Membership Directory. ... > I need to begin authenticating these users against a RADIUS server also. ... > Can anyone tell me if ADSI can be used for authenticating against a RADIUS ... (microsoft.public.win2000.security) IAS ... to get Authenticated via the IAS when they hit the PIX. ... I loaded IAS on one of my W2K ... I am authenticating user logins to ... >setting up the RADIUS server and sucessfully ... (microsoft.public.win2000.security) [NEWS] Cisco PIX / CS ACS Downloadable RADIUS ACLs ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... Cisco PIX / CS ACS Downloadable RADIUS ACLs ... (Securiteam) Re: use of RADIUS ... trying to access with the authentication type set to WebAuth. ... User opens up application, Netscreen sees host has authenticated and ... No RADIUS necessary. ... If it did and I installed a RADIUS server inside I am curious how the ... (comp.security.firewalls) You might protect your radius ... CERT Advisory CA-2002-06 Vulnerabilities in Various ... Systems running any of the following RADIUS implementations: ... * Cistron RADIUS versions 1.6.5 and prior ... Block packets to the RADIUS server at the firewall ... (comp.security.firewalls)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint