04-27-2010 09:03 AM - edited 03-11-2019 10:37 AM
Hi,
I have two pairs of Cisco ASA firewalls (5510 and 5550) These has been configured foto authenticate SSH and HTTP connections by SDI/RSA SecurID.
Recently this has stopped working and each time I try to re-enable it, I get the following error:
ASA(config)#aaa authentication http console RSA LOCAL
ERROR: The SecurID protocol cannot be used to authenticate HTTP console connections
I've read conflicing information, some Cisco docs claim this isn't possible for HTTP connections, some say that it is.
What confuses me more is that this used to work!
Any help would be appreciated.
Thanks
04-28-2010 06:10 AM
You are absolutely correct. It is not supported, and command reference clearly stated the same:
http://www.cisco.com/en/US/docs/security/asa/asa82/command/reference/a1.html#wp1555520
If it works at any point in time, it is not supported by Cisco as it has not been officially tested by the engineering team, hence not supported.
05-04-2010 03:58 AM
Is anyone aware of anyway of getting to work using an 'un-supported' method?
Clearly this is possible as we had it working previously
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide