We've been running 4.2 on Windows for a while and we're testing ACS 5.1. In 4.2 there was the ability to create internal users and have them auth to an external source such as an RSA SecurID server, I haven't been able to do this in 5.1 successfully. Does anyone know if you can create internal users and have them auth via RSA SecurID?
If it's not possible is there any way to segregate external users into groups to limit access?
Create your RSA server entry on RADIUS Identity Servers, and then, on Identity Store Sequences, check Password Based and create a sequence where the RSA server as the 1st server and the ACS as the second... Then you must configure your access policies to use this identity sequence you just created...
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...