Tom's Hardware > Forum > General Networking > VPN, VoIP, Video Conferencing, Remote Connections > Authenticating from Cisco 3005 through MS RADIUS

Authenticating from Cisco 3005 through MS RADIUS

Forum General Networking : VPN, VoIP, Video Conferencing, Remote Connections - Authenticating from Cisco 3005 through MS RADIUS

Tom's Hardware: Over 1.4 million members in 6 different countries available to answer all your high-tech questions. Sign up now! Its free!
Ask the community Add a reply
Word :    Username :           
 
Codejack   11-11-2005 at 02:48:57 PM

I am trying to set up authentication for VPN clients (software) to a Cisco 3005 concentrator through MS RADIUS
on either win2k server, or server 2003. I have gone through the Cisco example configurations, which worked
great for setting up hardware clients, but is not working for my software clients.

When trying to authenticate to the win2k server, test authentication from the concentrator works fine. The client
does not see any error message, it just goes through the process and disconnects. The client log looks good until:

40 08:15:55.296 11/11/05 Sev=Info/5 IKE/0x6300003C

Received a DELETE payload for IKE SA with Cookies:
I_Cookie=508F2B7F7B7C8497 R_Cookie=35DCC0259EE6FD37

41 08:15:55.296 11/11/05 Sev=Info/4 IKE/0x63000013

SENDING >>> ISAKMP OAK INFO *(HASH, DEL) to 172.30.128.3

42 08:15:55.296 11/11/05 Sev=Info/4 IKE/0x63000048

Discarding IPsec SA negotiation, MsgID=075ECA6A

43 08:15:55.296 11/11/05 Sev=Info/4 IKE/0x63000017

Marking IKE SA for deletion (I_Cookie=508F2B7F7B7C8497
R_Cookie=35DCC0259EE6FD37) reason =
PEER_DELETE-IKE_DELETE_UNSPECIFIED

44 08:15:55.718 11/11/05 Sev=Info/4 IPSEC/0x63700014

Deleted all keys

45 08:15:56.218 11/11/05 Sev=Info/4 IKE/0x6300004A

Discarding IKE SA negotiation (I_Cookie=508F2B7F7B7C8497
R_Cookie=35DCC0259EE6FD37) reason =
PEER_DELETE-IKE_DELETE_UNSPECIFIED

46 08:15:56.218 11/11/05 Sev=Info/4 IKE/0x63000001

IKE received signal to terminate VPN connection

47 08:15:56.218 11/11/05 Sev=Info/4 IKE/0x63000085

Microsoft IPSec Policy Agent service started successfully

48 08:15:56.718 11/11/05 Sev=Info/4 IPSEC/0x63700014

Deleted all keys

49 08:15:56.718 11/11/05 Sev=Info/4 IPSEC/0x63700014

Deleted all keys

50 08:15:56.718 11/11/05 Sev=Info/4 IPSEC/0x63700014

Deleted all keys

51 08:15:56.718 11/11/05 Sev=Info/4 IPSEC/0x6370000A

IPSec driver successfully stopped


The server log shows:

172.30.128.3,<username>,11/11/2005,08:16:03,IAS,NS1,
5,1332,6,2,7,1,66,172.30.144.96,4,172.30.128.3,61,5,4108,172.30.128.3,4116,9,4128,CISCO VPN,4129,<domainusername>,
4127,1,25,311 1 172.30.96.12 11/03/2005 20:38:57
172,4130,0x68616D696C746F6E746E2E676F762F46696E616E6365204469766973696F6E2F49542053657276696365732F486179732C20457468616E,4136,1,4142,0
172.30.128.3,<username>,
11/11/2005,08:16:03,IAS,NS1,25,311 1 172.30.96.12 11/03/2005 20:38:57 172,4130,0x68616D696C746F6E746E2E676F762F46696E616E6365204469766973696F6E2F49542053657276696365732F486179732C20457468616E,4294967206,0,4294967207,1,26,0x000000FF0507434953434F,26,0x000000FF040E496E646976696475616C4E54,4108,172.30.128.3,4116,9,4128,CISCO VPN,4129,<domainusername>,4127,1,4149,VPN,4136,2,4142,0

The concentrator log shows the following:

10849 11/11/2005 08:26:48.630 SEV=4 IKE/52 RPT=115 172.30.144.96
Group [IndividualNT] User [<username>]
User (ethanh) authenticated.

10850 11/11/2005 08:26:48.640 SEV=5 IKE/184 RPT=106 172.30.144.96
Group [IndividualNT] User [<username>]
Client OS: WinNT
Client Application Version: 4.0.1 (Rel)

10852 11/11/2005 08:26:49.480 SEV=4 IKE/119 RPT=145 172.30.144.96
Group [IndividualNT] User [<username>]
PHASE 1 COMPLETED

10853 11/11/2005 08:26:49.490 SEV=5 IKE/25 RPT=3768 172.30.144.96
Group [IndividualNT] User [<username>]
Received remote Proxy Host data in ID Payload:
Address 172.30.128.100, Protocol 0, Port 0

10856 11/11/2005 08:26:49.490 SEV=5 IKE/34 RPT=3906 172.30.144.96
Group [IndividualNT] User [<username>]
Received local IP Proxy Subnet data in ID Payload:
Address 0.0.0.0, Mask 0.0.0.0, Protocol 0, Port 0

10859 11/11/2005 08:26:49.490 SEV=4 IKE/1 RPT=480 172.30.144.96
Group [IndividualNT] User [<username>]
Received invalid phase 2 L2TP/IPSec Responder ID payload
Expected ID: Type 1, Proto 17, Port 1701, Addr 172.30.128.3
Received ID: Type 4, Proto 0, Port 0, Addr 0.0.0.0

10863 11/11/2005 08:26:49.490 SEV=4 IKEDBG/0 RPT=517
QM FSM error (P2 struct &0x1d284fc, mess id 0x2b2a1a0a)!

10864 11/11/2005 08:26:49.490 SEV=4 IKEDBG/65 RPT=1036 172.30.144.96
Group [IndividualNT] User [<username>]
IKE QM Responder FSM error history (struct &0x1d284fc)
<state>, <event>:
QM_DONE, EV_ERROR
QM_BLD_MSG2, EV_NEGO_SA
QM_BLD_MSG2, EV_IS_REKEY
QM_BLD_MSG2, EV_CONFIRM_SA

Please help!

Add a reply
Sponsored Links
Register or log in to remove.
Ask the community Add a reply
Tom's Hardware > Forum > General Networking > VPN, VoIP, Video Conferencing, Remote Connections > Authenticating from Cisco 3005 through MS RADIUS
Go to:

There are 1184 identified and unidentified users. To see the list of identified users, Click here.

Forum map
Bestofmedia Forum ©
2000-2009 Bestofmedia Group
Page generated in 0.329 seconds
Please mind

You are about to answer a thread that has been inactive for more than 6 months.
If you still wish to proceed, please ensure that your posting is original and does not duplicate or overlap any prior responses to this thread.

Add a reply Cancel
Sponsored links
  • Ask the community now
  • Publish
Ad
Related Topics
See all relatives topics
They won a badge
Join us in greeting them