I have setup a VPN connection (with double authentication) in my organisation using the below appliance:
1) Cisco ASA 5505
2) Cisco ACS v5.3
3) RSA server 7.1 SP4
For the VPN double authentication, I have set the RSA as my primary authentication server (using Radius) and cisco ACS v5.3 as my secondary authentication server (using also Radius). As I would like to force the user on the ACS to change his/her password on the 1st login, I have enabled the password management option on the ASA however the moment I enabled the password management option, the authentication for the RSA will fail.
Thus, I would like to ask is this due to a compability issue between the ASA and the RSA?