USG: IPSEC modeconfig and radius questons

Dreadbit
Dreadbit Posts: 9  Freshman Member
First Comment Friend Collector
edited April 2021 in Security
Hello, I'm using USG40 as a server (=main office) with roaming customers,
 - Can I use modeconfig pushing from server in any other scenario except "Remote Access" scenario? I want to allow users to access main office internal network and do not capture customers default route.
- I [can] use Radius for authentificating IPSEC users (tried with IKE1, but sure IKE2/EAP will work too). Can I pass IP address  for modeconfig via radius? What can I pass from Raduis to IPSEC server as Authorization info at all? Is there a document that describes that (and raduis dictonary)?
Thanks.

Accepted Solution

All Replies

  • Dreadbit
    Dreadbit Posts: 9  Freshman Member
    First Comment Friend Collector
    Thanks. Very pity to hear that radius can be used for Authentification but not for Authorization...

Security Highlight