Need help configuring VPN client 5.0 with SDI authentication

Unanswered Question
Jun 25th, 2007
User Badges:

I'm working on configuring a Pix 525 running OS ver 7.0(2) to accept a VPN client ver 5.0 with a RSA token for user authentication.


I have followed the instructions that I found on the RSA site but am confused as to where it's failing.


I've added the following lines to my configuration:


aaa-server RSAVPN protocol radius

aaa-server RSAVPN host 172.16.180.105

key *


tunnel-group RSAVPN type ipsec-ra

tunnel-group RSAVPN general-attributes

address-pool ippool authentication-server-group RSAVPN

tunnel-group RSAVPN ipsec-attributes

pre-shared-key *


This doesn't address how the RSA token is passed to the RSA server. I was told the RSA server uses RADIUS to validate the Pix as an authorized client hence the radius group.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.

Actions

This Discussion