I'm working on configuring a Pix 525 running OS ver 7.0(2) to accept a VPN client ver 5.0 with a RSA token for user authentication.
I have followed the instructions that I found on the RSA site but am confused as to where it's failing.
I've added the following lines to my configuration:
aaa-server RSAVPN protocol radius
aaa-server RSAVPN host 172.16.180.105
tunnel-group RSAVPN type ipsec-ra
tunnel-group RSAVPN general-attributes
address-pool ippool authentication-server-group RSAVPN
tunnel-group RSAVPN ipsec-attributes
This doesn't address how the RSA token is passed to the RSA server. I was told the RSA server uses RADIUS to validate the Pix as an authorized client hence the radius group.