Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Is it possible to set changing VPN passwords with Cisco ASA?

Posted on 2008-06-19
3
Medium Priority
?
456 Views
Last Modified: 2012-05-05
Our remote workers use VPN to access the office, we set them up with a username and password on our Cisco ASA 5520.  Which they then use to connect via the Cisco VPN client.

At the moment the VPN account has a password that never changes.  Is there a way to force changes to the password after a set expiration period ?  

OR ... another proposed idea .. is there anyway we could implement a random password generator and matching key fob password generator to users that they have to use to look at the current (often changing) password to get in ?

Any help is most appreciated.
0
Comment
Question by:stemc
  • 2
3 Comments
 
LVL 57

Accepted Solution

by:
Pete Long earned 1000 total points
ID: 21820873
>> Is there a way to force changes to the password after a set expiration period ?

Depends on how the username and password is being presented - are they stored on local database (in the ASA), Via RADIUS (Windows IAS), or Via TACACS+?

If they are stored on the ASA then No - if thay are stored in IAS or TACACS+ then yes :)
0
 

Author Closing Comment

by:stemc
ID: 31468699
Thanks Pete, they are stored on the ASA only.  I'll have a read up on the other methods you metion,

regards

Ste
0
 
LVL 57

Expert Comment

by:Pete Long
ID: 21836815
No Problem - if you want to go RADIUS/IAS theres a piece on my website :)
 http://www.petenetlive.com/Tech/Firewalls/Cisco/c2svpnRADIUS.htm
0

Featured Post

Choose an Exciting Career in Cybersecurity

Help prevent cyber-threats and provide solutions to safeguard our global digital economy. Earn your MS in Cybersecurity. WGU’s MSCSIA degree program was designed in collaboration with national intelligence organizations and IT industry leaders.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

An overview of cyber security, cyber crime, and personal protection against hackers. Includes a brief summary of the Equifax breach and why everyone should be aware of it. Other subjects include: how cyber security has failed to advance with technol…
When you put your credit card number into a website for an online transaction, surely you know to look for signs of a secure website such as the padlock icon in the web browser or the green address bar.  This is one way to protect yourself from oth…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
In a question here at Experts Exchange (https://www.experts-exchange.com/questions/29062564/Adobe-acrobat-reader-DC.html), a member asked how to create a signature in Adobe Acrobat Reader DC (the free Reader product, not the paid, full Acrobat produ…

782 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question