Message Image

Skip main navigation (Press Enter).

SRX

last person joined: yesterday

Ask questions and share experiences about the SRX Series, vSRX, and cSRX.

Back to discussions

Expand all | Collapse all

DVPN, Radius and manually adding user names

Jump to Best Answer

Erdem01-08-2014 16:01

Hi there Just curious if any of the 12.1Xxx versions (ie 12.1X46-D10.2) has fixed the problem ...

p.k01-08-2014 21:54Best Answer

Hi That was fixed in 12.1X44, so you no longer need to specify all usernames in dynamic-vpn stanza. ...

Erdem01-09-2014 14:40

Thank you PK much appriciated

1. DVPN, Radius and manually adding user names

0 Recommend
Erdem
Posted 01-08-2014 16:01

Reply Reply Privately
Hi there

Just curious if any of the 12.1Xxx versions (ie12.1X46-D10.2) has fixed the problem with manually adding usernames when using a radius server.

ie: set security dynamic-vpn clients wizard-dyn-group user <ad_username>

I found a post from 2011 (see below) saying this will be fixed in 12.3 but its not available for the SRX240.

http://forums.juniper.net/t5/SRX-Services-Gateway/SRX-10-4-Dynamic-VPN-with-Radius/m-p/119760/highlight/true#M15024

Hi ,

This is the current design of the DVPN feature on the SRX. In 12.3 we have new RLI-15236 to overcome this limitation. With this you can bind all clients to single client group and reference the same in the dvpn config which will avoid the configuration of all users.

Any information regarding this would be great.

Regards
2. RE: DVPN, Radius and manually adding user names
Best Answer

0 Recommend
p.k
Posted 01-08-2014 21:54

Reply Reply Privately
Hi

That was fixed in 12.1X44, so you no longer need to specify all usernames in dynamic-vpn stanza. See

http://www.juniper.net/techpubs/en_US/junos12.1x46/topics/concept/dynamic-vpn-enhancement-understanding.html
3. RE: DVPN, Radius and manually adding user names

0 Recommend
Erdem
Posted 01-09-2014 14:40

Reply Reply Privately
Thank you PK much appriciated

Powered by Higher Logic