Hi, I want to use RSA AM to provide 2 factor auth for a clientless SSL portal (via CISCO ASA) for my customers. But rather than a PIN I want to use an AD Password + Token to authenticate. Has anyone configured this, I cant see anywhere in the SC that would let me do this.
Hussein is correct, this is not an RSA integrated solution, it is kind of two solutions; RSA AM using PINless Token through Cisco followed by Cisco prompting for an AD password logon. We call this two 1-factor authentications, so it is not exactly 2-factor solution, it is something that several customers have done in various ways.
Hello Thomas,
Unfortunately it is not an available option to have 'AD+Token', but you can have AD and Token on 2 separate fields, and this will need some changes to the API of the Cisco ASA, which will needs Cisco to help you with that.
Also RSA provides RSA Windows Agent that provides that feature, which you will authenticate with the token and on the next screen you enter AD password.
So kindly check and advise us back if there is any assistance needed from our side.
Best Regards,