cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1724
Views
4
Helpful
3
Replies

Router login with RSA token

lennonlyc
Level 1
Level 1

Is there any way to secure the logining process of a router using RSA token?

And how to do that.

Thank you!

Regards.

3 Replies 3

Richard Burts
Hall of Fame
Hall of Fame

You can set the router to authenticate with TACACS or with Radius and then set up the authentication server to use RSA server as the authentication processor (an external authentication to the TACACS or Radius server).

So the configuration of the router is pretty straightforward:

aaa authentication login default group tacacs+ line

aaa authentication enable default group tacacs+ enable

The more unusual part is the configuration of the TACACS server to send authentication requests to RSA.

HTH

Rick

HTH

Rick

Really thanks for you help?

And could you figure me out that there is any static pwd and username with the code generated by token or just the username and code generated by token.

Example:

username:test

pwd:***

token key:1234

or just

username:test

token key:1234

thank you again.

If the router is authenticating with RSA token there is only the name and the token key, there is no static password.

If you wanted you could configure on the router a local username and password and then use that as a backup authentication method if the TACACS was not communicating. The configuration for that might look something like this:

user test password test_pass

aaa authentication login default group tacacs+ local

aaa authentication enable default group tacacs+ enable

HTH

Rick

HTH

Rick
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: