Manualshelf

TMS zl Management and Configuration Guide ST.1.2.100916

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
1211121212131214121512161217121812191220
10-89
Troubleshooting
Troubleshooting the TMS zl Module in Routing Mode
ii. Expand Remote Access Policies and find the policy intended for
L2TP user authentication.
iii. Right-click the policy and select Properties.
iv. Examine the Policy conditions list.
It is very important that the conditions do not specify any other
attributes than the following (they do not need to specify all of these):
Windows-Group
The user must be in the specified group.
Calling-Station-ID
If this attribute is specified as a condition, it must match the IP
addresses that the TMS zl Module sees as the source for the L2TP
messages. Keep in mind that NAT might translate these addresses.
NAS-Identifier
If this attribute is specified as a condition, it must match the one
sent by the TMS zl Module. You can check this setting in the entry
for the RADIUS server in Network > Authentication > RADIUS.
–NAS-IP-Address
If this attribute is specified as a condition, it must match the IP
address on the TMS VLAN that the module uses to communicate
with the RADIUS server. Check the forwarding interface in the
module’s route to the server (Network > Routing > View Routes
window).
If one of the attributes is wrong, edit it. If there is an attribute not in
the list, remove it. For example, in Figure 10-18, the policy has a NAS-
Port-Type condition. You would select this condition and remove it.