Link to home
Start Free TrialLog in
Avatar of rajeshgc
rajeshgc

asked on

How to integrate RSA & VPN using cisco ASA 5510 & remote internet client?

integrate RSA & VPN  using cisco ASA 5510 & remote internet client
Avatar of Istvan Kalmar
Istvan Kalmar
Flag of Hungary image
Avatar of stsonline
stsonline
Flag of United States of America image
You can define your RSA server as an AAA server of type 'sdi' and use it to authenticate your VPN users just like a RADIUS or LDAP server.

*** RSA does not use a PSK, it downloads an encrypted *.sdi file on first connect
aaa-server RSA_VPN protocol sdi
aaa-server RSA_VPN host <primary>
aaa-server RSA_VPN host <backup>

Then set your tunnel group to authenticate against the RSA server(s):

tunnel-group rsa_ra_vpn general-attributes
authentication-server-group RSA_VPN

Avatar of rajeshgc
rajeshgc

ASKER

Hi Ikalmar....
Ur reference is really very good....really thanks a lot for the URL...
Regards
Rajesh

Hi stsonline.....
Reallyfirst of all i'ld like to  thank u a lot for ur nice effort...
But as a beginner am not able to understand the whole thing...
Could u please explain it in details regarding "how to integrate csico ASA5510 & RSA?"
Did u implemented it anywhere? or is it the right thing to integrate it for good security purpose.?
plz do let me know....

Thanks & Regards
Rajesh
ASKER CERTIFIED SOLUTION
Avatar of Istvan Kalmar
Istvan Kalmar
Flag of Hungary image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial