Filter
Top Products
35-85
Cisco ASDM User Guide
OL-16647-01
Chapter 35 General
Easy VPN Remote
–
Group Password—Specifies the password to use with the specified group policy.
–
Confirm Password—Requires you to confirm the group password just entered.
–
X.509 Certificate—Specifies the use of an X.509 digital certificate, supplied by a Certificate
Authority, for authentication.
–
Select Trustpoint—Lets you select a trustpoint, which can be an IP address or a hostname, from
the drop-down list. To define a trustpoint, click the link to Trustpoint(s) configuration at the
bottom of this area.
–
Send certificate chain—Enables sending a certificate chain, not just the certificate itself. This
action includes the root certificate and any subordinate CA certificates in the transmission.
• User Settings—Configures user login information.
–
User Name—Configures the VPN username for the Easy VPN Remote connection. Xauth
provides the capability of authenticating a user within IKE using TACACS+ or RADIUS. Xauth
authenticates a user (in this case, the Easy VPN hardware client) using RADIUS or any of the
other supported user authentication protocols. The Xauth username and password parameters
are used when secure unit authentication is disabled and the server requests Xauth credentials.
If secure unit authentication is enabled, these parameters are ignored, and the security appliance
prompts the user for a username and password.
–
User Password—Configures the VPN user password for the Easy VPN Remote connection.
–
Confirm Password—Requires you to confirm the user password just entered.
• Easy VPN Server To Be Added—Adds or removes an Easy VPN server. Any ASA or VPN 3000
Concentrator Series can act as a Easy VPN server. A server must be configured before a connection
can be established. The security appliance supports IPv4 addresses, the names database, or DNS
names and resolves addresses in that order. The first server in the Easy VPN Server(s) list is the
primary server. You can specify a maximum of ten backup servers in addition to the primary server.
–
Name or IP Address—The name or IP address of an Easy VPN server to add to the list.
–
Add—Moves the specified server to the Easy VPN Server(s) list.
–
Remove—Moves the selected server from the Easy VPN Server(s) list to the Name or IP
Address file. Once you do this, however, you cannot re-add the same address unless you re-enter
the address in the Name or IP Address field.
–
Easy VPN Server(s)—Lists the configured Easy VPN servers in priority order.
–
Move Up/Move Down—Changes the position of a server in the Easy VPN Server(s) list. These
buttons are available only when there is more than one server in the list.
Modes
The following table shows the modes in which this feature is available:
Firewall Mode Security Context
Routed Transparent Single
Multiple
Context System
• — • ——