I would like to use LDAP and RSA (double authentication) for my SSL VPN clients. I can successfully authenticate users if my login page forces the users to enter a second username. If I have the configuration set so they only have to enter their username once, no authentication attempts are being passed to the authentication servers. I am running debug on LDAP and RADIUS (for RSA) which is how I know that authentication is never being passed if they only have to enter their username once on the login page.
If I do not specify 'use-primary-username' at the end of the 'secondary-authentication-server-group' command, the users must enter their username twice and authentication is successful.
Does anyone know how to configure the ASA so they only have to enter their username one time while utilizing both LDAP (as primary) and RSA (RADIUS) (as secondary)?
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...