Hi simon
first of let let me tell you a many many thanks a
lot for your quick reply , i was searching on these
from last 4-5 days and was not been able to get any in
fo on these ,
simon i am a bit new to these products ,
as i told you we want to use dial back feature
we have cisco secure ACS and secureID Ace/server ,
if could guide me how the over all system in this
case will work , or point me to some url where i will
get the information ,
i have gone through many docs but didt got the clear
picture of how the system will work if we use cisco
secure ACS along with secureID ACE/server ,
these are my doubts
1) what is the recommended way to design the system
using both this products if we will have to use dial
back (dont want a support of ISDN )
2) where to create users (in cisco database or in
ACE server databse )
3) you told something regarding proxying,in which
case proxying comes into the picture ? how exactly
it will work.
4) if we want users to first gets auth by giving
username and password (which will use radius for
authenticating the user) and then use token based
authentication using ACE server then how to achive
this .in the above case where to create user and users
template,how this can work with dialback
simon please forgive me for asking such a silly
questions ,really sorry for the inconviniance ,
please reply me as soon as possible
Thanks & Regards
Prashant Desai
--- [EMAIL PROTECTED] wrote:
> Nilesh,
>
> when you set the user to be authenticated with
> SecurID, the only need to
> enter username and passcode once.
>
> For the SecurID users, you do not need to create
> them under ACS, just a
> template for SecurID users. This way, if the user
> does not exist under the
> "normal" database, it will automatically proxy out
> to SecurID.
>
> Dialback will work with it, but be careful how you
> are presenting the
> options to the end user, if they are using ISDN then
> roaming dialback can be
> difficult to configure, unless you use CBCP (Call
> Back COntrol Protocol)
> which allows you to specifiy the dialback number.
>
> If you want any more details please feel free to
> mail
>
> Simon Kellow
>
>
> -----Original Message-----
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]On Behalf Of
> Nilesh Naik
> Sent: 11 May 2001 11:06
> To: [EMAIL PROTECTED]
> Subject: secureID with radius
>
>
> hello friends
>
> we have 3-4 branch offices and for our
> employees
> who keeps on travelling , we want a secured remote
> access environment the remote access environment.
> for
> which we have decided to deploy ciscoSecure ACS
> along
> with the secureID Ace/Server
>
> follwing is the mixed list of my queries and our
> requirment , please guide me
>
> requirements :
>
> 1) dial back/call back once user gets
> authenticated.
> 2) traditional userID/password authentication with
> an
> additional level of security provided by
> SecureIDtoken
> server and secureID tokens.
> 3) this addtional layer of security provided by
> secureID tokens and token server will be only used
> in
> the case of remote access.
>
>
> queries :
> 1) Is it possible to use token based
> authentication
> with traditional radius authentication ,
> what i mean is user will have to enter
> username/password two times once for Radius and
> second time
> user will enter username/OTP passcode
> generated by
> SecureID authenticators,
>
> This(above) should also happen with
> dialback/callback , is it possible ? if yes then how
> this authentication will work ?
>
>
> is the above recommended ? if no what is
> recommended ?
>
> 2) we have decided that we are going to deploy
> ciscosecure ACS with SDI secureID ACE/server.
> then where we should create the users ? since
> now
> we have droped the idea of using LDAP central
> directory to store user ID/password whichwe were
> planning to use for authentication and so , i have
> mentioned in my previous mail .
>
> 1) for traditional radius authentication
> with
> normal
> uid/password .
> and
> 2) for token based authentication with
> sameuid/OTP
> passcode generated by secureID authenticators
>
> in cisco ACS native database ? or in the ACE
> server
> userdatabse ? or in both cisco sever ACS Databse as
> well as ACS servers database ?
> whats the recommended ?
>
>
> 3) How the radius authentication will work along
> with
> the ACE servers token based authentication ?
>
>
> 4) can we have all the following applications
>
> 1) ciscoSecure Access Control Server
> 2) SecureID Ace/Server
>
> running on different hosts,for above senario.
>
> would really appriate if someone guide me
>
> Thanks & Regards
> Prashant Desai
>
> __________________________________________________
> Do You Yahoo!?
> Yahoo! Auctions - buy the things you want at great
> prices
> http://auctions.yahoo.com/
> -
> [To unsubscribe, send mail to
> [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
>
__________________________________________________
Do You Yahoo!?
Yahoo! Auctions - buy the things you want at great prices
http://auctions.yahoo.com/
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
