04-08-2014 03:22 AM
Hello.
We intend to use scheme of connection: cisco asa + cisco acs 5.4 + rsa securid.
We use two groups on Cisco ACS . Group "A" must use two-factor authentication, and the group "B" don't.
how to create this rule?
Solved! Go to Solution.
04-09-2014 08:40 AM
Perform rule base identity selection with dap-tunnel-group-name as selector.
ASA will send tunnel group name in auth request.
Example attached.
04-09-2014 08:40 AM
04-09-2014 08:29 PM
Hello Marcin.
I do not understand how this rule will apply to the base secureid? You associate ASA with securid or ACS?
04-10-2014 12:28 AM
ASA associates with ACS, ACS with RSA over RADIUS.
04-10-2014 02:41 AM
Everything works. Thank you!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide