After the upgrade of the ACS Solution Engine to 4.0, under External User Databases > Database Configuration, the RSA SecurID Token Server is no longer a selected field. If this was previously configured, RSA SecurID Token Server(s) can be viewed under List All Database Configurations, but they cannot be deleted.
Also, if you added the RSA SecurID Token Server to the External User Database in a previous version of ACS, mapped it to a group, and selected this database in the Unknown User Policy, then, after the upgrade to ACS 4.0, the RSA SecurID Token Server is still displayed. Ideally, it is deleted from everywhere inside the External User Database and not just from the Database Configuration.
Moreover, the configuration in the RSA SecurID Token Server is ideally placed in the RADIUS Token Server after the upgrade to 4.0.
This issue is documented in Cisco bug ID CSCeh73803.
The RSA SecurID Token Server feature has been removed in Cisco Secure ACS Solution Engine versions 3.3.2 and 4.0.
The only current workaround available is to downgrade the software version to 3.2.
Hello. I have a FPR2110-NGFW-K9 that is running cisco-asa-fp2k.126.96.36.199.SPA however I have not yet installed the ASA application. The box is currently just running the fxos lfbff:
I am trying to access the Firepower Chassis Manager GUI. I hav...
Hi We have cisco switch. In order to access these switch (it may be old switch or old CRT) via ssh, some cipher need to change. Can we change these cipher via the command below to add or delete any of there cipher? the command is like below. I tried...
Hi All, I have configured RA VPN with anyconnect on my Cisco FDM. Whenever I connect to VPN, I have no internet access. What is missing?I also have another question. How can I relate a user to a specific group policy. for example I want user A to hav...
I have been attempting to set up user monitoring on our Cisco Firepower device so we can see usernames instead of IP addresses under monitoring. It works with the VPN connection but not for internal traffic. What could I be overlooking or does this requir...
My SNS-3615 is running ISE 3.1 patch-3 with FIPs mode DISABLED; --> Administration --> System --> Settings --> FIPs mode disabled. However, from the ISE 3.1 patch-3 server, whenever I ssh into my external CentOS-7 Linux server, that...