VPN Users

VPN Users

Usage Guidelines

User Syntax

Options

Example

Related Commands

VPN Users

This section of the configuration defines the VPN 5000 users database. Each line defines a VPN 5000 user along with that user's VPN Group configuration and password.

edit config VPN Users

Usage Guidelines

Multi-line entries must have line breaks escaped with a backslash. However, line breaks encapsulated in a double quoted string are preserved.

When an VPN 5000 client begins a tunnel session, it transmits the username to the device. If the user is found in this section, the information found in the entry is used to set up the tunnel. RADIUS and LDAP servers can also be used for authentication of VPN users (see the Radius section or LDAP Auth Server sections). If the username is not found, and a RADIUS or LDAP server has not been configured to perform the authentication, then the tunnel session will not be opened and an error is returned to the client.

User Syntax

After entering the edit config command, and then the append command, enter one or more mappings using the following syntax:

"username" Config = "VPN_group" [SharedKey = "Shared_Secret"]

Options

"username"

Identifies a unique user. It must be the same as the name entered in the user's client. The name can be between 1 and 60 alphanumeric characters. If the string contains spaces or other special characters, it must be enclosed in quotes. This entry must always be the first on the line.

"VPN_group"

Specifies to which VPN group the user belongs according to the VPN Group section name. Information from that section is sent to the client when the tunnel is opened.

"Shared_Secret"

The password to authenticate the user with the concentrator and to enable packet encryption. Enter the same shared secret into the VPN 5000 Client. The Shared_Secret can be between 1 and 255 characters long.

"username"	Identifies a unique user. It must be the same as the name entered in the user's client. The name can be between 1 and 60 alphanumeric characters. If the string contains spaces or other special characters, it must be enclosed in quotes. This entry must always be the first on the line.
"VPN_group"	Specifies to which VPN group the user belongs according to the VPN Group section name. Information from that section is sent to the client when the tunnel is opened.
"Shared_Secret"	The password to authenticate the user with the concentrator and to enable packet encryption. Enter the same shared secret into the VPN 5000 Client. The Shared_Secret can be between 1 and 255 characters long.

Example

[ VPN Users ]
Fred Config="Bedrock" SharedKey="Wilma" 
Barney Config="Cobblestone County" SharedKey="Betty"

Related Commands

Command Description

configure Radius

Configures the concentrator for communication with a RADIUS server for user authentication

configure VPN Group

Configures the VPN group parameters

show vpn

Shows VPN configuration and statistics

Command	Description
configure Radius	Configures the concentrator for communication with a RADIUS server for user authentication
configure VPN Group	Configures the VPN group parameters
show vpn	Shows VPN configuration and statistics

Table of Contents

VPN Users

Usage Guidelines

User Syntax

Options

Example

Related Commands