cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
560
Views
0
Helpful
2
Replies

Configuring ASA with 3rd Party Radius to Return Password

dschmidt
Level 1
Level 1

Hello,

 

We use Cisco ASA for VPN access, we also use a 3rd Party Radius server for Vasco Tokken authentication.  User signs into Cisco Anyconnect using a 4 digit Pin + Vasco Pin.  Everything seems to work great, however when using ADFS  sites such as Service now or Office 365 it doesn't work.  My guess is that i need to tell my radius server to pass the Password knows as a Password Return.

I need to figure out the Vendor Code (I belive it is 3076) and the Vendor-Specfic Attribute where to send the Password to.  I am having troubles finding which attribute number I need to send the password to so the Cisco ASA will accept it.  

 

Anyone know what attribute number I need to use?  Or Does it sound like I am going the wrong direction and it's a different problem?

 

Thank you,

 

Daniel Schmidt

2 Replies 2

Rejohn Cuares
Level 4
Level 4

This might help.

 

https://www.vasco.com/Images/Office_365v2.pdf

https://www.vasco.com/large_download/Tracking/Whitepaper_CiscoASA5505.pdf

 

 

Please rate replies and mark question as "answered" if applicable.

Hello,

Thanks for the info, we don't use the Vasco Identikey server, our Radius server has a Vasco Plugin that does that for us.