beautypg.com

Cisco 3.3 User Manual

Page 784

background image

Appendix E VPDN Processing

VPDN Process

E-4

User Guide for Cisco Secure ACS for Windows Server

78-16592-01

Figure E-5

HG Authenticates Tunnel with ACS

5.

The HG now authenticates the tunnel with the NAS, where the username is
the name of the HG. This name is chosen based on the name of the tunnel, so
the HG might have different names depending on the tunnel being set up. See

Figure E-6

.

Figure E-6

HG Authenticates Tunnel with the NAS

6.

The NAS now uses its ACS to authenticate the tunnel from the HG. See

Figure E-7

.

S6649

Username = nas_tun
Password = CHAP_stuff

Corporation

VPDN user

User = [email protected]

ACS

RSP

Authentication request

ACS

S6650

CHAP challenge

Corporation

VPDN user

User = [email protected]

ACS

RSP

ACS