Chapter14 Enhanced Easy VP N
14-2
Cisco Router and Security Device Manager 2.5 User’s Guide
OL-4015-12
Authentication
Select the method that Easy VPN clients are to use to authenticate themselves to
the Easy VPN Server configured on the router. Pre-shared keys require that you
communicate the key to administrators of Easy VPN clients. Digital certificates
do not require this, but each client must enroll for and receive a digital certificate.
RADIUS Servers
Identify the RADIUS servers that the router will use for authorization and group
policy lookup and the VPN groups configured on the RADIUS servers in the
RADIUS Servers window.
Field Reference
Table14-1 describes the fields in this screen.
Table14-1 RADIUS Servers Fields
Element Description
RADIUS Client Source Configuring the RADIUS source allows you to specify the source IP
address to be sent in packets bound for the RADIUS server. To view
the IP address and other information about an interface, select the
interface and click the Details button. This option can have the
following values:
Router chooses source—Choose Router chooses source if you
want the source IP address in the RADIUS packets to be the
address of the interface through which the RADIUS packets
exit the router.
Interface name—If you choose a specific router interface, the
source IP address in the RADIUS packets will be the address of
that interface.
The source IP address in the RADIUS packets sent from the router
must be configured as the NAD IP address in the Cisco Access
Control Server (ACS) version 3.3 or later.