Solved

Cisco ASA two factor VPN

Posted on 2016-10-18
3
66 Views
Last Modified: 2016-10-19
Currently we have a cisco ASA 5510 and a ipsec client vpn connecting with the Cisco VPN client (not any connect)  I was wondering if anyone has deployed this with two factor?  Preferably a RSA token generated by smartphone
0
Comment
Question by:leadtheway
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 14

Expert Comment

by:SIM50
ID: 41848704
I have deployed it with RSA SecurID and it worked without any issues.  But here is my question for you: are you doing this for the compliance? If yes then auditors will tell you to switch from ipsec to anyconnect client because RA IPsec uses aggressive mode for phase 1 which is considered to be insecure.
0
 
LVL 1

Author Comment

by:leadtheway
ID: 41848779
no not for compliance, just wanting to add another layer
0
 
LVL 14

Accepted Solution

by:
SIM50 earned 500 total points
ID: 41848832
In that case, RSA SecurID should work for you. It's a straight forward implementation and the guides available from EMC. I used hardware tokens thought.
0

Featured Post

Webinar June 1st - Attacking Ransomware  

The global cyberattack that corrupted hundreds of thousands of computer systems on May 12th had a face, name, & price tag that we’ve seen all too often in recent years: Ransomware. With the stakes – and costs – of a ransomware attack higher than ever, is your business prepared ?

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

From Cisco ASA version 8.3, the Network Address Translation (NAT) configuration has been completely redesigned and it may be helpful to have the syntax configuration for both at a glance. You may as well want to read official Cisco published AS…
If you use NetMotion Mobility on your PC and plan to upgrade to Windows 10, it may not work unless you take these steps.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

738 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question