EasyManuals Logo

Cisco 5510 - ASA SSL / IPsec VPN Edition Configuration Guide

Cisco 5510 - ASA SSL / IPsec VPN Edition
1822 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #658 background imageLoading...
Page #658 background image
31-12
Cisco ASA 5500 Series Configuration Guide using ASDM
OL-20339-01
Chapter 31 Configuring AAA Servers and the Local Database
Configuring AAA Server Groups
TACACS+ Server Fields
The following table describes the unique fields for configuring TACACS+ servers, for use with the
Adding a Server to a Group” section on page 31-10.
ACL Netmask Convert How you want the adaptive security appliance to handle netmasks
received in downloadable access lists.
Detect automatically: The adaptive security appliance attempts to
determine the type of netmask expression used. If the adaptive
security appliance detects a wildcard netmask expression, the
adaptive security appliance converts it to a standard netmask
expression.
Note Because some wildcard expressions are difficult to detect
clearly, this setting may misinterpret a wildcard netmask
expression as a standard netmask expression.
Standard: The adaptive security appliance assumes downloadable
access lists received from the RADIUS server contain only standard
netmask expressions. No translation from wildcard netmask
expressions is performed.
Wildcard: The adaptive security appliance assumes downloadable
access lists received from the RADIUS server contain only wildcard
netmask expressions, and it converts them all to standard netmask
expressions when the access lists are downloaded.
Microsoft CHAPv2 Capable If you use double authentication and enable password management in
the tunnel group, then the primary and secondary authentication
requests include MS-CHAPv2 request attributes. If a RADIUS server
does not support MS-CHAPv2, then you can configure that server to
send a non-MS-CHAPv2 authentication request by unchecking this
check box.
Field Description
Field Description
Server Port The port to be used for this server.
Server Secret Key The shared secret key used to authenticate the TACACS+ server to the
adaptive security appliance. The server secret that you configure here
should match the one that is configured on the TACACS+ server. If you
do not know the server secret, ask the RADIUS server administrator.
The maximum field length is 64 characters.

Table of Contents

Other manuals for Cisco 5510 - ASA SSL / IPsec VPN Edition

Preview: Cli Configuration Guide
Cli Configuration Guide2164 pages
Preview: Hardware Installation Guide
Hardware Installation Guide82 pages
Preview: Getting Started Guide
Getting Started Guide208 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Cisco 5510 - ASA SSL / IPsec VPN Edition and is the answer not in the manual?

Cisco 5510 - ASA SSL / IPsec VPN Edition Specifications

General IconGeneral
BrandCisco
Model5510 - ASA SSL / IPsec VPN Edition
CategoryFirewall
LanguageEnglish

Related product manuals