This is a bit of a strange one! In a nutshell we have Cisco ACS 3.3 and RSA SecureID 5.2 server on our Remote Access Server. Checking the RADIUS logs in ACS we see that there is a definate 4 second delay with the authentication between ACS and RSA
Let me elaborate....
Our primary method of connection is using the Cisco VPN Client v 4.6. We've never noticed a problem with this connection before. (VPN client seems a bit more forgiving)
We are now trialling Telstra NextG wireless modems, using a alternative connection to the VPN client
We have been monitoring the logs on RADIUS and see the incoming request from Telstra, followed 2 seconds later by a retry, which is then followed 2 seconds later by another retry. At this point Telstra gives up and fails the connection. But according to the logs, the connection is accepted at the same time as the connection 'gives up' (but appears further in the log).
Each time this happens we noticed that it takes 4 seconds (sometimes 5) for the OK to be logged by Cisco coming from RSA.
My question is (after all that!), is there anyway we can further troubleshoot / configure the connections between RSA and Cisco?
Has anyone else noticed this problem before, or something similar?
The server is managing over a thousand other connection devices that arent using RSA with no problems. Looks like its something to do with the connection between Cisco and RSA?
Looking forward to hearing your thoughts!