https://community.cisco.com/t5/network-access-control/external-identity-sources-binding-rsa-securid-to-ise/m-p/2118761#M171520 <HTML><HEAD></HEAD><BODY><P>Hi Tarik</P><P></P><P>Thanks for reply. </P><P></P><P>I will give a try on this. </P><P></P><P>Happy new year</P><P></P><P>Noel</P></BODY></HTML> Mon, 31 Dec 2012 02:43:10 GMT yong khang NG 2012-12-31T02:43:10Z https://community.cisco.com/t5/network-access-control/external-identity-sources-binding-rsa-securid-to-ise/m-p/2118759#M171435 <P>Hi all, </P><P></P><P>Say, my topology was using ISE doing VPN inline posture, and bind RSA securID (version 7.1) as external Identity Sources. </P><P></P><P>During&nbsp; the deployment, in order to let my iPEP node join the Policy Service&nbsp; Node, for the certificate i using the third party CA server (Window&nbsp; server 2008 R2) as the root CA, both of these 2 ISE were mutual&nbsp; authenticated and done. </P><P></P><P>My question. as i using&nbsp; RSA secureID as external identity sources, native behaviour, Will the&nbsp; ISE trust RSA with no identity certificate signed by the identitical&nbsp; root CA? </P><P></P><P>Should i enroll this RSA appliance issue the CSR to CA server to sign and in the PKI environment? Is there a need for this? </P><P></P><P>Thanks </P><P></P><P>Noel</P> Mon, 11 Mar 2019 02:55:35 GMT https://community.cisco.com/t5/network-access-control/external-identity-sources-binding-rsa-securid-to-ise/m-p/2118759#M171435 yong khang NG 2019-03-11T02:55:35Z https://community.cisco.com/t5/network-access-control/external-identity-sources-binding-rsa-securid-to-ise/m-p/2118760#M171476 <HTML><HEAD></HEAD><BODY><P>Noel,<BR /><BR />From my experience when integrating with the RSA token server you need the sdconf.rec file exported from the RSA and you import that into the ISE configuration. You then select this identity store with your authentication policies for vpn users. There isnt a need for any certificates when integrating with a token server (that was the last time I checked) and even if there would just need to trust each other's certficats.<BR /><BR />I hope that helps!<BR /><BR />Sent from Cisco Technical Support iPad App</P></BODY></HTML> Mon, 31 Dec 2012 02:33:45 GMT https://community.cisco.com/t5/network-access-control/external-identity-sources-binding-rsa-securid-to-ise/m-p/2118760#M171476 Tarik Admani 2012-12-31T02:33:45Z https://community.cisco.com/t5/network-access-control/external-identity-sources-binding-rsa-securid-to-ise/m-p/2118761#M171520 <HTML><HEAD></HEAD><BODY><P>Hi Tarik</P><P></P><P>Thanks for reply. </P><P></P><P>I will give a try on this. </P><P></P><P>Happy new year</P><P></P><P>Noel</P></BODY></HTML> Mon, 31 Dec 2012 02:43:10 GMT https://community.cisco.com/t5/network-access-control/external-identity-sources-binding-rsa-securid-to-ise/m-p/2118761#M171520 yong khang NG 2012-12-31T02:43:10Z