beautypg.com

Cisco 3.3 User Manual

Page 782

background image

Appendix E VPDN Processing

VPDN Process

E-2

User Guide for Cisco Secure ACS for Windows Server

78-16592-01

Figure E-1

VPDN User Dials In

2.

If VPDN is enabled, the NAS assumes that the user is a VPDN user. The NAS
strips off the “username@” (mary@) portion of the username and authorizes
(not authenticates) the domain portion (corporation.us) with the ACS. See

Figure E-2

.

Figure E-2

NAS Attempts to Authorize Domain

3.

If the domain authorization fails, the NAS assumes the user is not a VPDN
user. The NAS then authenticates (not authorizes) the user as if the user is a
standard non-VPDN dial user. See

Figure E-3

.

Corporation

VPDN user

User = mary@corporatio

Call setup / PPP setup
Username = [email protected]

ACS

RSP

ACS

Authorization request
User = corporation.us

S6646

Corporation

VPDN user

User = [email protected]

ACS

RSP

ACS

See also other documents in the category Cisco Computers: