cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1258
Views
0
Helpful
4
Replies

ACS 5.2 integration with RSA allow only one login every min

haris_drimouras
Level 1
Level 1

Hello


I have an ACS 5,2.0.26-8 running on VM intergrated with RSA. Users are able to login using their RSA passcode for network management utilizing TACACS. The problem seam to be related with RSA token caching. Once a user login sucessful on device A using current token he can not login with the same token on another device. User must wait for a new token and then he can login again. 

Before moving to ACS 5.2 we were using ACS 4.2 (intergrated with the same RSA) and back then ACS 4.2 cache passcode so user where able to login on devices using the same passcode. When the token change user have to use the new one. 

Does anyone know a way to overcome this problem providing the same functionality like the "Token Card Settings" Durantion option under group properties, to cache token for a specific period. The global option for caching under RSA definition on 5.2 does not solve the problem. (make on difference)

Thank you in advance

4 Replies 4

aijazbeigh
Level 1
Level 1

Hi,

Did you get this resolved or it is still same.

Regards

Aijaz

Hi,

This problem still remains. Using ACS 5.2 each RSA token can only be used once. This outcome is from our experience and testing

Regards

Haris

Hi Haris,

Thanks for info. Did you raise any TAC case for this. Or did you had response from Cisco.

Thanks

Aijaz

RSA token caching is a commited feature for ACS 5.5 scheduled for FCS towards the end of this year

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: