Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

RSA secure 'next tokencode' not working with VPN client/PIX/TACACS

Hi, I have implemented RSA secure ID with our remote access setup and I cannot get the VPN client to prompt for next tokencode. It always prompts for username/password so the user doesnt know they are in next token mode. We are using vpn client 4.8/pix 7.2 (3)/Cisco secure ACS ver4.0/RSA Auth manager 6.1. Can anyone offer any advice ?

Many thanks

Nicky

3 REPLIES
Silver

Re: RSA secure 'next tokencode' not working with VPN client/PIX/

I have the same setup and it works fine for

me. I use ACS version 3.2 on Win2k3 and

RSA 6.1 on Linux. I configure the ACS for

External user authentication for remote access

VPN and also for managing cisco devices.

Users connect to the Cisco Pix 8.0(2) and

the authentication is checked by the ACS.

ACS then proxies off that authentication to

a RSA SecurID Server. next token code does work

here is an sample:

Username: test3

Password:

Enter your new PIN, containing 4 to 8 digits,

or

to cancel the New PIN procedure:

Please re-enter new PIN:

Wait for the code on your card to change, then log in with the new PIN

Enter PASSCODE:

C2960#

CCIE Security

New Member

Re: RSA secure 'next tokencode' not working with VPN client/PIX/

Hi thanks for your reply and your example. When I telnet to my pix I dont get the new pin prompt, the VPN client 4.8 does though which is weird ? What version of vpn client are you using ?

thanks

Nicky

Silver

Re: RSA secure 'next tokencode' not working with VPN client/PIX/

I use vpn client version 4.8

2884
Views
0
Helpful
3
Replies
CreatePlease to create content