B-30
Cisco ASA 5500 Series Configuration Guide using ASDM
Appendix B Configuring an External Server for Authorization and Authentication
Configuring an External RADIUS Server
IPsec-Over-UDP YYY34BooleanSingle0 = Disabled
1 = Enabled
IPsec-Over-UDP-Port YYY35IntegerSingle4001 - 49151. The default
is10000.
Banner2 YYY36StringSingleBanner string to display for
Cisco VPN remote access
sessions: IPsec IKEv1,
AnyConnect
SSL-TLS/DTLS/IKEv2, and
Clientless SSL. The Banner2
string is concatenated to the
Banner1 string , if configured.
PPTP-MPPC-Compression Y 37 Integer Single 0 = Disabled
1 = Enabled
L2TP-MPPC-Compression Y 38 Integer Single 0 = Disabled
1 = Enabled
IPsec-IP-Compression YYY39IntegerSingle0 = Disabled
1 = Enabled
IPsec-IKE-Peer-ID-Check YYY40IntegerSingle1 = Required
2 = If supported by peer
certificate
3 = Do not check
IKE-Keep-Alives YYY41BooleanSingle0 = Disabled
1 = Enabled
IPsec-Auth-On-Rekey YYY42BooleanSingle0 = Disabled
1 = Enabled
Required-Client- Firewall-Vendor-Code YYY45IntegerSingle1 = Cisco Systems (with Cisco
Integrated Client)
2 = Zone Labs
3 = NetworkICE
4 = Sygate
5 = Cisco Systems (with Cisco
Intrusion Prevention Security
Agent)
Table B-7 ASA Supported RADIUS Attributes and Values (continued)
Attribute Name
VPN
3000 ASA PIX
Attr.
No.
Syntax/
Type
Single
or
Multi-
Valued Description or Value