Solved

Cisco ASA two factor VPN

Posted on 2016-10-18
3
60 Views
Last Modified: 2016-10-19
Currently we have a cisco ASA 5510 and a ipsec client vpn connecting with the Cisco VPN client (not any connect)  I was wondering if anyone has deployed this with two factor?  Preferably a RSA token generated by smartphone
0
Comment
Question by:leadtheway
  • 2
3 Comments
 
LVL 14

Expert Comment

by:SIM50
ID: 41848704
I have deployed it with RSA SecurID and it worked without any issues.  But here is my question for you: are you doing this for the compliance? If yes then auditors will tell you to switch from ipsec to anyconnect client because RA IPsec uses aggressive mode for phase 1 which is considered to be insecure.
0
 
LVL 1

Author Comment

by:leadtheway
ID: 41848779
no not for compliance, just wanting to add another layer
0
 
LVL 14

Accepted Solution

by:
SIM50 earned 500 total points
ID: 41848832
In that case, RSA SecurID should work for you. It's a straight forward implementation and the guides available from EMC. I used hardware tokens thought.
0

Featured Post

Networking for the Cloud Era

Join Microsoft and Riverbed for a discussion and demonstration of enhancements to SteelConnect:
-One-click orchestration and cloud connectivity in Azure environments
-Tight integration of SD-WAN and WAN optimization capabilities
-Scalability and resiliency equal to a data center

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Clarification about access via WAN 6 35
Setting up L2TP/IPsec in RRAS 5 41
Cisco SSLVPN webpage is not loading 3 18
CISCO ASA 5505 double Wan 8 18
If you have an ASA5510 then this sort of thing would be better handled with a CSC Module, however on an ASA5505 thats not an option, and if you want to throw in a quick solution to stop your staff going to facebook during work time, then this is the…
Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …

828 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question