×

Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.

Does PIX v6.3 talk to RSA server or a proxy is needed

Unanswered Question
Dec 1st, 2003
User Badges:

I know VPN 3k boxes talk directly to RSA server without the need for a proxy device but I am not sure about PIX running v6.3.


Thank you


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
scoclayton Mon, 12/01/2003 - 07:53
User Badges:
  • Gold, 750 points or more

Nope, sorry. The PIX still just speaks Radius and TACACS+ to the AAA servers. I believe RSA has a Radius application that you can install on the server to translate between the two systems. Hope this helps.


Scott

svalerio Tue, 12/16/2003 - 03:51
User Badges:

Hi all,


to enable strong authentication with RSA products on a PIX (even with PIX OS 6.3) you a need a RADIUS server which can act as a proxy for the RSA Security SecurID ACE/Server.

This last server has its own embedded RADIUS server which you can use (no need to have a "dedicated RADIUS").

At the following link you can find more information about PIX and RSA Security products interoperability:


http://rsasecurity.agora.com/rsasecured/detail.asp?product_id=335


Hope this helps ...

Regards,

Sonia


---------------------------------------

Sonia Valerio - GCFW, CISSP, CSS1


System Engineering (Security)

Uniautomation S.p.A.

Via V.Toffetti, n.25

I-20139 Milano Italy http://www.uniautomation.it


Actions

This Discussion