?
Solved

RSA SecurID 6.1 RADIUS Server Configuration

Posted on 2011-03-24
3
Medium Priority
?
2,563 Views
Last Modified: 2012-05-11
I'm using a SecurID appliance together with my Cisco ASA to authenticate VPN users.  I also have a Cisco wireless LAN controller, and would like to use SecurID to authenticate WLAN users.  Problem is, the ASA supports SecurID's native SDI authentication mode, but the WLC only supports RADIUS.

I found a Cisco guide, which details how to get the WLC talking to SecurID via RADIUS, but I've run into a problem when setting up the built-in SecurID RADIUS server.  In Authentication Manager, under the RADIUS menu, I select Manage RADIUS Server, and receive the warning message 'RADIUS Server has not been configured'.

I've Googled this and come up empty.  I do not have a current RSA support agreement, but I contacted my sales rep, and he told me that the RADIUS server is included with the appliance, so I should already have everything I need.  I just need a guide or some help on getting the SecurID RADIUS server working.
0
Comment
Question by:FWeston
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 79

Expert Comment

by:arnold
ID: 35212630
As far as configuring a radius server:
First thing you have to make sure is that you add the cisco wireless LAN controller's IP as a client on the RADIUS server that came with secureID with a secert (password that is used to authenticate the messages).
Check the log on the radius server to see whether you were getting errors dealing with invalid/unknown client, ignoring message
Presumably RSA has a knowledge base/guides for just such an occasions.

http://www.rsa.com/rsasecured/guides/imp_pdfs/Cisco_PIX_702_AuthMan61.pdf
Is an example of configuring the Appliance to be used with a PIX.

What options are available within the appliance that deal with configuring/enabling RADIUS?
0
 
LVL 3

Accepted Solution

by:
FWeston earned 0 total points
ID: 35215685
The only options I see in the appliance are what I detailed above in my original question.  I contacted my sales rep and apparently the RSA RADIUS server is a separate piece of software that runs on another server, which explains why I couldn't find anything on the appliance to configure.  He said he would get a copy of the RADIUS server and e-mail it to me since I don't have a support agreement and can't access the download on their website.  So I guess this question is solved.
0
 
LVL 3

Author Closing Comment

by:FWeston
ID: 35252734
Determined that RADIUS server is a separate piece of software that must be downloaded from RSA.
0

Featured Post

Migrating Your Company's PCs

To keep pace with competitors, businesses must keep employees productive, and that means providing them with the latest technology. This document provides the tips and tricks you need to help you migrate an outdated PC fleet to new desktops, laptops, and tablets.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The conference as a whole was very interesting, although if one has to make a choice between this one and some others, you may want to check out the others.  This conference is aimed mainly at government agencies.  So it addresses the various compli…
A look at what happened in the Verizon cloud breach.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Suggested Courses

801 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question