Hi,
I've added the permit rule now but still not working.
A couple of things to mention
If I issue a "show user-table" on the controller, I see this:
(uktcnwc3) #show user-table
Users
-----
IP MAC Name Role Age(d:h:m) Auth VPN link AP name Roaming Essid/Bssid/Phy Profile Forward mode Type
---------- ------------ ------ ---- ---------- ---- -------- ------- ------- --------------- ------- ------------ ----
2.2.2.191 00:00:00:00:00:00 00:0b:86:82:89:80 default-vpn-role 00:00:02 VPN 81.129.3.192 N/A tunnel
Also, when following the configuration guide, it says to add the following:
host) (VPN Authentication Profile "default-iap") #server-group default
(host) (VPN Authentication Profile "default-iap") #default-role iaprole
On my controller, I don't have the option for "defualt-role iaprole". These are my options
(uktcnwc3) (VPN Authentication Profile "default-iap") #?
cert-cn-lookup Check certificate common name against AAA server.
Default is enabled.
clone Copy data from another VPN Authentication Profile
max-authentication-fa.. Maximum auth failures before user is blacklisted.
Range: 1-10. Default: 0.
no Delete Command
server-group Name of server group
I'm running 6.1.3.8, but I thought that version of code supported this type of functionality.
Thanks for your help.