|
Posted by stephen on December 17, 2006, 4:48 pm
>
> > find some docs about the tokens you will use.
> i have to recommend one , I have seen alot of organizations are using
> SecureID RSA, therefore I am going to recommend this one as well.
>
> > TACACS or RADIUS server as a translator. We use the Cisco one, but there
> > are
> We also use the Cisco one which is called Cisco Secure Access Control
> Server (Cisco Secure ACS V3.3), which uses RADUIS or TACACS+ protocols.
>
> > AFAIR the VPN 3000 can talk directly,
> You meant to say VPN 3000 can talk directly to RSA ACE/Server, without
> using any traslator such as Cisco Secure Access Control Server for
> instance,,,,didn't you ?
>
> > but every system i have seen uses a TACACS or RADIUS server as a
> > translator.
> This is what I have seen as well. I do not why !!!
> http://www.netcraftsmen.net/welcher/papers/aaabasics01.html
> > Cisco network devices generally know *how to talk* TACACS+ or RADIUS to
> > ACS, and *then* Cisco Secure Access Control Server (Cisco Secure ACS,
> > V3.3 or V4.0 ) talks to your Active Directory, LDAP, or other
> > *authentication database*.
you can get some architecture papers from RSA about how to do this - they
have some integration suggestions for the Cisco VPN 3000 on their web site.
it states that the VPN3000 supports "native" securID / ACE server and can
integrate directly, or via Radius.
you need to register on their site to access the info.
>
>
> --
> zillah
> ------------------------------------------------------------------------
> zillah's Profile: http://www.futurehardware.in/member.php?userid=301
> View this thread: http://www.futurehardware.in/showthread.php?t=558012
>
> Future Hardware - http://www.futurehardware.in
--
Regards
stephen_hope@xyzworld.com - replace xyz with ntl
>
|