From: E S (edwardsohn@sbcglobal.net)
Date: Thu Jun 15 2006 - 06:21:34 ART
I need some assistance for a client, if anyone has ever gotten this to work.
I have an ASA 7.2(1) that is set up with Cisco ACS 4.0 for RADIUS. The ACS
is configured to check RSA SecurID Token Server 6.0 (using hardware tokens).
Everything appears to be set up correctly.
I cannot get WebVPN or IPSec remote users to pass the "New PIN" mode after
entering in the initial token code.the RSA server log shows that it just
times out with an error (all works fine if I disable the "New PIN" feature).
Also, when I test authentication locally on the RSA server using DB
Administration - Remote Mode, it works fine; just not through the ACS.
Has anyone gotten this to work? And if not, I still cannot log in via
WebVPN using SDI on the ASA, either.what gives? The only thing that seems
to work is IPSec remote access using SDI.
I've never had these problems with a VPN-C.I think they're so much better
than the ASA when it comes to remote access.
Please email me directly if you have an answer.
Thanks,
Ed
This archive was generated by hypermail 2.1.4 : Sat Jul 01 2006 - 07:57:32 ART