So nobody is using the RSA SecureID OTP tokens to authenticate to the Cisco ASA?
Seems like the ASDM is trying to authenticate several times to the RSA, using the same password,
And that what cause the problem... Apparently this have something to do with the way Java is working.
Actually lots of people love to use it however there is some limitation with this feature. Here is something I wrote on this topic a couple of weeks ago. You may be intrested to go through this article:
**Do rate helpful posts**
Thanks for the reply, but my problem is completely different...
I'm trying to implement the RSA SecurID authentication with an ASA already running in a single routed mode.
The combination works great with SSH access, but with the ASDM, the RSA server recognise it as REUSE
Attack, and eventually block the token...
I have same issue with OTP when using ASDM.
When I attempting to connect to an ASM, many authentication requests is generated quickly (usualy about seven) to lock user account.
CS ACS 4.2(1)
ASA Version: 8.4(5) (SINGLE ROUTED MODE)
ASDM Version: 7.0(2)
OTP - CRYPTOCard/SafeNet
ASDM behaves exactly as described.
Just I do not know why Cisco declare:
New Features for ASA Version 8.2(1):One Time Password Support for ASDM Authentication.
Released: May 6, 2009