Manualshelf

System information

ManualsBrandsCisco ManualsComputer equipment3005 - VPN Concentrator - Gateway
11121314151617181920
18
Release Notes for Cisco VPN 3000 Series Concentrator, Release 3.6 Through 3.6.8.B
OL-5637-02
Open Caveats for VPN 3000 Series Concentrator
CSCdy59580
Cannot perform xauth with a PDC emulator in an Active Directory (AD) environment, when NT is
the authentication method from a VPN 30000 Concentrator. In a MIXED MODE environment for
Windows 2000 AD setup, using a PDC emulator in the domain for authentication from a VPN 3000
Concentrator does not allow a user to authenticate from a PDC emulator if the length of password
is more than 14 characters.
Workaround:
Do one of the following:
Use a password shorter than 15 characters
Use Radius server for Xauth, and let Radius talk to Active Directory
CSCdy67982
The LAN-to-LAN tunnel might drop and get re-established, but the IKE session doesn't get cleared
out of the administer sessions screen.
CSCdy71688
The VPN 3000 Concentrator does not send the ZoneLabs Integrity Server properly formed markup
characters. Ampersands – as well as angle brackets (<,>), apostrophes ('), and double-quotes (") –
should be escaped, because they are markup characters. For example: The “&” is not escaped. The
result is that a login name of “L&nc&” is sent included in all messages the VPN Concentrator sends
Integrity. (The username should be sent as “L&amp;nc&amp;”.) Integrity rejects the session, and
the VPN Concentrator drops the tunnel.
CSCdy76967
Attempting to delete a file from an ftp session into the VPN3000 fails and terminates the ftp session.
Workaround:
The file can be deleted from the VPN3000 Web Management screen at Administration | File
Management.
CSCdz04141
After setting up the “config” user in Administration | Access Rights | Administrators | Modify
Properties as being able to Read/Write File, this user can't access Administration | File Management.
The following message appears:
You do not have sufficient authorization to access the specified page.
CSCdz12638
In all versions prior to Release 3.6, the Concentrator asked the Client to provide a Domain Name
field for Native NT Domain authentication. Since it was believed that this field was not used for
anything, this field was removed in Release 3.6.
To establish a connection in Release 3.6, use:
DOMAIN\username
password
instead of the construction used in earlier releases:
username
password
DOMAIN