08-25-2008 12:09 PM - edited 03-11-2019 06:35 AM
Has anyone experienced the dialog box for entering network password continuosly poping up every minute or so (When logged into the ASDM on a firewall). If so, please instruct me on how to get pass this annoyance. We use TACACS+ with RSA tokens, so this is a huge problem to keep re-entering the tokwn every minute or so.
08-25-2008 02:12 PM
If you are using read-only mode then look at the folwoing bug.
CSCsr11493
Syed
08-27-2008 06:45 AM
Where do you configure the read-only mode. How can I change this.
08-27-2008 11:34 AM
I saw the following statement in Cisco documentation.
"User Privilege-Shows the privilege of the ASDM user."
We are using TACACS+ with RSA tokens. How do I set this so that I am a sufficient privilege.
09-05-2008 08:54 AM
nobody
09-05-2008 09:29 AM
Hello. This is an issue I ran into fairly recently. ASDM sends multiple authentication requests to the TACACS+ server when you launch it. Because of this, and due to the fact that an RSA token is a one time password, you are being prompted multiple times. If the password wasn't changing every time you use it, it would just authenticate you about 8 times and you wouldn't see the individual prompts. This is a known issue and as far as I know, there isn't a workaround planned for it yet. The way we got around it when I ran into it was by adding direct AD authentication as an additional external database in ACS and put it first in the 'unknown user' list order. Currently, if I use my username only, it requires the RSA token, if I put the AD domain before my name, it sends it directly to the AD server and doesn't require the token. This was our only way around it for ASDM tacacs+ access in this environment. I hope that this issue gets resolved as I would like to go back to only RSA tokens for access.
Thanks,
Jeff
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: