Solved

Cisco Anyconnect with Safeword 2008

Posted on 2010-11-18
3
1,248 Views
Last Modified: 2012-05-10
hi..

i have a ASA 5505 Sec plus, and im using Cisco Anyconnect for remote access to my internal serveres. authenticating is done via AD authenticating (RADIUS)
I want to integrate Safeword 2008 tokens, for additional layer of security.
i have installed the safeword database and the Safeword Agent for NPS, now when i authendicate in my VPN client the AD password has been replaced with the Token passfrase.

my question is: is it possibel to add a third field so i can authendicate using AD loginname and password, and Security Token passfrase.
0
Comment
Question by:kimhed
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 28

Accepted Solution

by:
mikebernhardt earned 500 total points
ID: 34174442
Wait, you want AD password AND token? Why? Safeword replaces the AD password with one-time passwords, and also requires a PIN appended which is chosen by the user. The PIN is entered into the PIN field on the Safeword tab for the user in AD. This is the "something you have and something you know" philosophy.
0
 

Expert Comment

by:Tech-Notes
ID: 34178959
I don't think this is possible.
This feature is around for accessing webmail and (if i remember correctly) TS / Citrix.

But in my opinion you just want to stick to the login and Safeword generated code + static pin.
Hope it helped.
0
 

Author Comment

by:kimhed
ID: 34190096
hi..

yes i know the pin feature, just wanted to know if it was possible to add a 3 field option
0

Featured Post

Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

OpenVPN is a great open source VPN server that is capable of providing quick and easy VPN access to your network on the cheap.  By default the software is configured to allow open access to your network.  But what if you want to restrict users to on…
Lotus Notes – formerly IBM Notes – is an email client application, while IBM Domino (earlier Lotus Domino) is an email server. The client possesses a set of features that are even more advanced as compared to that of Outlook. Likewise, IBM Domino is…
In this video we show how to create an email address policy in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Mail Flow…
To show how to create a transport rule in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Rules tab.:  To cr…

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question