ASA SDI Failure

Unanswered Question
Mar 19th, 2009

sh run tunnel-group Users

tunnel-group Users type remote-access

tunnel-group Users general-attributes

address-pool Users

authentication-server-group (inside) RSA-ACE

tunnel-group Users ipsec-attributes

pre-shared-key *

VPN-ASA# sh run aaa-server

aaa-server RSA-ACE protocol sdi

reactivation-mode timed

aaa-server RSA-ACE (inside) host X.X.X.X

retry-interval 3

timeout 60

test aaa authentication RSA-ACE tests successfully. VPN Client asks for my username and token code. I enter it in, keeps asking me for it until it fails. When I check the server for activity - it shows that my pin number and token code where accepted.

Any help would be greatly appreaciated.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Richard Burts Sat, 03/21/2009 - 08:57


I do not see any issues in what you have posted. So we need to dig a little deeper. What client? What version of code in the client? What version of code on the ASA? Perhaps some debug output?




This Discussion