Solved

Cisco Anyconnect with Safeword 2008

Posted on 2010-11-18
3
1,235 Views
Last Modified: 2012-05-10
hi..

i have a ASA 5505 Sec plus, and im using Cisco Anyconnect for remote access to my internal serveres. authenticating is done via AD authenticating (RADIUS)
I want to integrate Safeword 2008 tokens, for additional layer of security.
i have installed the safeword database and the Safeword Agent for NPS, now when i authendicate in my VPN client the AD password has been replaced with the Token passfrase.

my question is: is it possibel to add a third field so i can authendicate using AD loginname and password, and Security Token passfrase.
0
Comment
Question by:kimhed
3 Comments
 
LVL 28

Accepted Solution

by:
mikebernhardt earned 500 total points
ID: 34174442
Wait, you want AD password AND token? Why? Safeword replaces the AD password with one-time passwords, and also requires a PIN appended which is chosen by the user. The PIN is entered into the PIN field on the Safeword tab for the user in AD. This is the "something you have and something you know" philosophy.
0
 

Expert Comment

by:Tech-Notes
ID: 34178959
I don't think this is possible.
This feature is around for accessing webmail and (if i remember correctly) TS / Citrix.

But in my opinion you just want to stick to the login and Safeword generated code + static pin.
Hope it helped.
0
 

Author Comment

by:kimhed
ID: 34190096
hi..

yes i know the pin feature, just wanted to know if it was possible to add a 3 field option
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Exchange server is not supported in any cloud-hosted platform (other than Azure with Azure Premium Storage).
This article explains in simple steps how to renew expiring Exchange Server Internal Transport Certificate.
In this video we show how to create a Distribution Group in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >>…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

914 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now