cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
250
Views
0
Helpful
1
Replies

RSA token with Pix

rolandshum
Level 1
Level 1

I have a Pix 525 running 7.02 OS using the 5.0 VPN client. I'm trying to configure this to use RSA tokens to authenticate. I added the following lines to my Pix config:

aaa-server <group name> protocol sdi

reactivation-mode timed

aaa-server <group name> host 172.16.180.X

retry-interval 3

timeout 13

aaa-server <group name> protocol sdi

reactivation-mode timed

aaa-server <group name> host 172.16.180.105

retry-interval 3

timeout 13

Where do I put in the shared secret that the RSA server uses? I know we put one in there, it's actually a version of RADIUS but I don't know where to put it for the Pix.

Thanks

1 Reply 1

bbernard
Level 1
Level 1

If you're doing it via SDI the two devices will negotiate the shared secret. Only if you're doing Radius do you need to create one manually, based on RSA documents.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: