04-24-2007 06:29 PM - edited 02-20-2020 09:38 PM
Hello
I am trying to configure an ASA (ver 7.2) for VPN remote access using RSA SecurID for authentication.
My goal is to duplicate a setup that has been in place for years in our Nortel Contivity VPN concentrators. How the access works now:
1) Users open VPN connections to Contivity.
2) Authentication requests are passed to RSA SecureID ACE servers configured to use RADIUS protocol. Each user name is assigned in the RSA server to a user group.
3) The RSA server accepts the user, and returns the corresponding user group ID.
4) User groups are also defined in Contivity, and each group has a filter. The access for each user is restricted based on the user group returned by the RSA server.
Can I achieve the same result using Cisco ASA appliances? I cannot find documentation on how users can be assigned dynamically to a tunnel group based on attributes returned by the RSA RADIUS server.
Thank you,
Cristian
04-30-2007 11:28 AM
Try this configuration guide for group assignment RADIUS server:
04-30-2007 11:43 AM
Thank you very much.
I will give it a try as soon as I have access again to the lab.
Cristian
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide