Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1009
Views
0
Helpful
2
Replies

SDI AAA authentication for ASDM/HTTP access

leesutcliffe
Level 1
Level 1

‎04-27-2010 09:03 AM - edited ‎03-11-2019 10:37 AM

Hi,

I have two pairs of Cisco ASA firewalls (5510 and 5550) These has been configured foto authenticate SSH and HTTP connections by SDI/RSA SecurID.

Recently this has stopped working and each time I try to re-enable it, I get the following error:

ASA(config)#aaa authentication http console RSA LOCAL
ERROR: The SecurID protocol cannot be used to authenticate HTTP console connections

I've read conflicing information, some Cisco docs claim this isn't possible for HTTP connections, some say that it is.

What confuses me more is that this used to work!

Any help would be appreciated.

Thanks

Labels:
0 Helpful
2 Replies 2

Jennifer Halim
Cisco Employee
Cisco Employee

‎04-28-2010 06:10 AM

You are absolutely correct. It is not supported, and command reference clearly stated the same:

http://www.cisco.com/en/US/docs/security/asa/asa82/command/reference/a1.html#wp1555520

If it works at any point in time, it is not supported by Cisco as it has not been officially tested by the engineering team, hence not supported.

0 Helpful

leesutcliffe
Level 1
Level 1
In response to Jennifer Halim

‎05-04-2010 03:58 AM

Is anyone aware of anyway of getting to work using an 'un-supported' method?

Clearly this is possible as we had it working previously

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card