so I´ve to configure the Authentication AND the Group-Policies the same way on all MX-Devices...? or is it enough to only configure the Group-Policies on the Spoke MXs?
Another question about this is - how should be dealed with it, when only an MX at a central side is used without one at the Spoke side (classic MPLS connectivity /w central Internet Connectivity) - that would`nt work either?!