03-08-2014 11:45 AM - edited 03-10-2019 09:30 PM
Hello,
I am trying to secure the access using RSA SecurID to the following 2 scenarios:
- SSH/telnet/console to any Cisco device (Router, Switch, Firewall)
- SSL VPN users
Is it possible to do this integration directly between the Cisco device and the RSA SecurID itself? Or it is required to have ACS in between? \
Thanks,
Justine.
Solved! Go to Solution.
03-08-2014 07:57 PM
With Router/switches/AP's only radius and tacacs are supported so you can configure the IOS devices for radius protocol and server as radius token server.
http://www.cisco.com/c/en/us/td/docs/ios/12_2/security/configuration/guide/fsecur_c/scftplus.html#wp1001011
ASA does supports SDI protocol so you can integrate the RSA securID directly with it.
SDI on ASA
http://www.cisco.com/c/en/us/support/docs/security-vpn/secureid-sdi/116304-technote-rsa-00.html#anc10
SDI with ACS
http://www.cisco.com/c/en/us/support/docs/security-vpn/secureid-sdi/116304-technote-rsa-00.html#anc9
You may want to read discussion on the similar requirement.
https://supportforums.cisco.com/discussion/11259716/rsa-securid
~BR
Jatin
** Do rate helpful posts**
03-08-2014 07:57 PM
With Router/switches/AP's only radius and tacacs are supported so you can configure the IOS devices for radius protocol and server as radius token server.
http://www.cisco.com/c/en/us/td/docs/ios/12_2/security/configuration/guide/fsecur_c/scftplus.html#wp1001011
ASA does supports SDI protocol so you can integrate the RSA securID directly with it.
SDI on ASA
http://www.cisco.com/c/en/us/support/docs/security-vpn/secureid-sdi/116304-technote-rsa-00.html#anc10
SDI with ACS
http://www.cisco.com/c/en/us/support/docs/security-vpn/secureid-sdi/116304-technote-rsa-00.html#anc9
You may want to read discussion on the similar requirement.
https://supportforums.cisco.com/discussion/11259716/rsa-securid
~BR
Jatin
** Do rate helpful posts**
03-11-2014 10:35 AM
Justine,
Let me know if you've any further questions on this matter.
Regards,
Jatin Katyal
**Do rate helpful posts**
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide