Cisco Systems OL-5532-02 manual Defining the Remote Access User List Optional

Page 14

Chapter 4 Remote Access VPN Services

Creating Remote Access VPN Policies

Figure 4-14 The Everything Option for Split Tunneling

Step 3 Click Next to continue to the User List page as described in the “Defining the Remote Access User List (Optional)” section on page 4-14.

Defining the Remote Access User List (Optional)

In this section, you can enter one or more user profiles to store locally on the CPE device (as opposed to storing the user profiles on a AAA Server).

Note Use this feature only if you chose Internal as the user authentication method for the VPN group in the remote access policy. (This is specified in the Authentication Server field on the Remote Access VPN Policy – General Editor page.)

Step 1 The Remote Access VPN Policy – User List page appears as shown in Figure 4-15.

Cisco IP Solution Center Integrated VPN Management Suite Security User Guide, 3.2

4-14	OL-5532-02

Image 14

Contents Remote Access VPN Services Adding AAA Server Devices to Your Repository AAA Servers Owner Select button TimeoutName IP AddressCreating Encryption Policies Click Remote Access VPN Policy PoliciesRemote Access VPN Policy General Editor XAuth Timeout Group PasswordConfirm Password Use ModeNAT Traversal AuthenticationDefault Domain IKE NAT KeepaliveRemote Access VPN Policy Address Pools Defining Address PoolsNet Mask Starting AddressEnding Address 11 Remote Access VPN Policy Split Tunneling Network List Defining Split Tunneling Networks OptionalGenerate Split TunnelingPolicy CreateDefining the Remote Access User List Optional 14 The Everything Option for Split TunnelingPassword User IDDefining Cisco IOS Software-Specific Parameters SA Idle TimeoutEnabled SA Idle Timeout Injection Defining PIX Firewall-Specific ParametersReverse Route Group LockMax Connect Time Idle TimeoutDefining VPN 3000-Specific Parameters Sysopt ConnectionAuthentication on Logins Min PasswordOnly Passwords SimultaneousDefining the VPN 3000 Access Hours Start Time Defining the VPN 3000 L2TP ParametersControl End TimeRequired Use Client AddressL2TP Compression Require StatelessMSCHAPv2 SummaryMSCHAPv1 23 The Policies Page with Policy Status Displayed Creating Remote Access VPN Service Requests Description Network-basedIPsec AAA Servers Remote AccessPolicies CPEs29 CPEs Associated with Remote Access Service Dialog Box 31 Add/Remove Templates Dialog Box 32 The Template DataFile Chooser Action ActiveOL-5532-02