Configure the Windows VPN

During this task we will configure the Windows VPN to work with the RADIUS integration.

1. On the Windows system open settings.
2. From the settings home page, or using Find a setting select VPN.
3. Click Add a VPN connection.
   

4. In the add a VPN dialog enter:

   • VPN provider – Windows (built-in).
   • Connection name – An appropriate name.
   • Server name or address – <Address of ASA FQDN.>
   • VPN type – IKEv2
   
5. Click Save.
6. Navigate to Network Connections and select the new VPN, right click and choose Properties.

7. Right click and choose Properties.
8. Select the security tab.
9. In the Authentication section, select enable User Extensible Authentication Protocol (EAP).
   From the dropdown select Microsoft: EAP-TTLS (encryption enabled).
   Then click Properties.
   The TTLS Properties dialog will display.
   
10. In the Client Authentication section of the TTLS Properties dialog enable
    Select a non-EAP method for authentication and then choose Unencrypted (PAP).
    
11. Click OK to complete the configuration.