Manualshelf

System information

ManualsBrandsCisco ManualsComputer equipment3005 - VPN Concentrator - Gateway
11121314151617181920
13
Release Notes for Cisco VPN 3000 Series Concentrator, Release 3.6 Through 3.6.8.B
OL-5637-02
Usage Notes
Administer Sessions Screen Shows Data for Wrong Group
When an L2TP/IPSec connection is established, authentication should behave as follows:
1. The Tunnel Group is authenticated (using the OU field in the Certificate or using the Base Group).
2. The User should be authenticated (using the authentication method of the tunnel group.
3. The User's Group (as defined by the group delimiter option) should be authenticated.
This all works properly, but in the Administration | Administer Sessions screen, the Tunnel Group
displays instead of the User's Group (CSCdy00360).
Long Initialization for SNMP Traps in Releases 3.0, 3.5, and 3.5.1
In Releases 3.0, 3.5, and 3.5.1 of the VPN 3000/3002 products, the SNMP task takes 3-5 minutes to
complete initialization after a device reboot. Traps being processed during this interval are queued and
sent to the SNMP Management station after SNMP task initialization completes.
However, the cold start trap, normally sent as a result of a device rebooting, is never sent.
In Release 2.5.X, the cold start trap is properly sent to the SNMP Manager after a device reboots
(CSCdt01583).
Windows NT Authentication Servers Can’t Follow Other Server Types in the a
Prioritized Authentication Server List
If an Windows NT server follows a non-NT server in the prioritized authentication server list, and the
non-NT server becomes unavailable for some reason, the VPN 3000 Concentrator detects this and falls
back to the Windows NT server. If the tunnel being established is PPTP or L2TP, the authentication
attempt to the Windows NT server also fails.
Therefore, when configuring PPTP or L2TP connections, do not place Windows NT authentication
servers behind other types of servers in the applicable authentication server list (CSCdy07226).
Accessing Online Glossary Requires Connection to Cisco.com
The Glossary button at the top of all Help screens tries to contact univercd at www.cisco.com (the Cisco
documentation site). This connection requires connectivity to Cisco's main web site. If your PC does not
have a corporate Internet connection or your firewall blocks access, the following error appears when
you attempt to access the Glossary:
“The page cannot be displayed.
To access the Glossary, you must be connected to www.cisco.com (CSCdy14238).