Appendix E
VPDN Processing
Figure E-3
Authorization of Domain Fails
Corporation
ACS
Figure E-4
ACS Authorizes Domain
Corporation
ACS
78-16592-01
Authorization
failed
ACS
If the ACS authorizes the domain, it returns the Tunnel ID and the IP address
of the home gateway (HG); these are used to create the tunnel. See
Figure
E-4.
CHAP challenge
RSP
ACS
The HG uses its ACS to authenticate the tunnel, where the username is the
4.
name of the tunnel (nas_tun). See
RSP
User = mary@corporation.us
Authorization reply
Tunnel ID = nas_tun
IP address = 10.1.1.1
User = mary@corporation.us
Figure
User Guide for Cisco Secure ACS for Windows Server
VPDN Process
VPDN user
VPDN user
E-5.
E-3