Secure Access Configuration Guide For Wireless Clients Part Two: Wireless Data Privacy and Monitored Logon 2003-03
2) On the ACS, enable L2TP/IPSec VPN support in both the Unauthenticated
and Authenticated Access Policies.
a. On the ACS, browse to Rights -> Access Policies and select the
Unauthenticated Access Policy. Configure the following and Save changes.
¾ Network Address Translation: When Necessary (this allows Real IP
addressing for inner tunnel).
¾ IP addressing: Require DHCP
¾ Encryption: Allowed, but not required
¾ Encryption Protocols: L2TP+IPSec
¾ Keep the default on all other settings
Figure 5.2 – Unauthenticated Access Policy
b. On the ACS, browse to Rights -> Access Policies and select the
Authenticated Access Policy. Configure the Authenticated Access Policy
EXACTLY the same as the Unauthenticated Access Policy and save
changes.
© Copyright 2005 Hewlett-Packard Company, LP. 24