Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
383
Views
0
Helpful
1
Replies

ASA SDI Failure

dnile326
Level 1
Level 1

‎03-19-2009 12:00 PM

sh run tunnel-group Users

tunnel-group Users type remote-access

tunnel-group Users general-attributes

address-pool Users

authentication-server-group (inside) RSA-ACE

tunnel-group Users ipsec-attributes

pre-shared-key *

VPN-ASA# sh run aaa-server

aaa-server RSA-ACE protocol sdi

reactivation-mode timed

aaa-server RSA-ACE (inside) host X.X.X.X

retry-interval 3

timeout 60

test aaa authentication RSA-ACE tests successfully. VPN Client asks for my username and token code. I enter it in, keeps asking me for it until it fails. When I check the server for activity - it shows that my pin number and token code where accepted.

Any help would be greatly appreaciated.

Labels:
0 Helpful
1 Reply 1

Richard Burts
Hall of Fame
Hall of Fame

‎03-21-2009 08:57 AM

Donnie

I do not see any issues in what you have posted. So we need to dig a little deeper. What client? What version of code in the client? What version of code on the ASA? Perhaps some debug output?

HTH

Rick

HTH

Rick
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents