Solved

Is it possible to set changing VPN passwords with Cisco ASA?

Posted on 2008-06-19
3
450 Views
Last Modified: 2012-05-05
Our remote workers use VPN to access the office, we set them up with a username and password on our Cisco ASA 5520.  Which they then use to connect via the Cisco VPN client.

At the moment the VPN account has a password that never changes.  Is there a way to force changes to the password after a set expiration period ?  

OR ... another proposed idea .. is there anyway we could implement a random password generator and matching key fob password generator to users that they have to use to look at the current (often changing) password to get in ?

Any help is most appreciated.
0
Comment
Question by:stemc
  • 2
3 Comments
 
LVL 57

Accepted Solution

by:
Pete Long earned 250 total points
ID: 21820873
>> Is there a way to force changes to the password after a set expiration period ?

Depends on how the username and password is being presented - are they stored on local database (in the ASA), Via RADIUS (Windows IAS), or Via TACACS+?

If they are stored on the ASA then No - if thay are stored in IAS or TACACS+ then yes :)
0
 

Author Closing Comment

by:stemc
ID: 31468699
Thanks Pete, they are stored on the ASA only.  I'll have a read up on the other methods you metion,

regards

Ste
0
 
LVL 57

Expert Comment

by:Pete Long
ID: 21836815
No Problem - if you want to go RADIUS/IAS theres a piece on my website :)
 http://www.petenetlive.com/Tech/Firewalls/Cisco/c2svpnRADIUS.htm
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

On Beyond Tools A conversation I recently had with the DevOps manager of a major online retailer really made me think about DevOps monitoring tools (https://www.onpage.com/devops-incident-management-tool/). The manager and I discussed how sever…
As technology users and professionals, we’re always learning. Our universal interest in advancing our knowledge of the trade is unmatched by most industries. It’s a curiosity that makes sense, given the climate of change. Within that, there lies a…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

816 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now