Authentication Features

The VPN Client supports the authentication features listed in Table 1-3.

Table 1-3 Authentication Features 

Authentication Feature

Description

User authentication through VPN central-site device

  • Internal through the VPN device's database

  • RADIUS (Remote Authentication Dial-In User Service)

  • NT Domain (Windows NT)

  • RSA (formerly SDI) SecurID or SoftID

Certificate Management

Allows you to manage the certificates in the certificate stores.

Certificate Authorities (CAs)

CAs that support PKI SCEP enrollment.

Peer Certificate Distinguished Name Verification

Prevents a VPN Client from connecting to an invalid gateway by using a stolen but valid certificate and a hijacked IP address. If the attempt to verify the domain name of the peer certificate fails, the VPN Client connection also fails.



Copyright © 2003, Cisco Systems, Inc. All rights reserved.