Filter
Top Products
3-11
Configuration Guide for Cisco Secure ACS 4.2
OL-14390-02
Chapter 3 Configuring New Features in ACS 4.2
RSA Support on the ACS SE
The External User Database Configuration page opens.
Step 4 Click Configure.
The Cisco Secure ACS to RSA SecurID Configuration page opens.
Step 5 Click Purge Node Secret.
Configuring RSA SecurID Token and LDAP Group Mapping
You can perform authentication with RSA in native mode and also by using LDAP group mapping, with
RSA. If you use RSA with LDAP group mapping, then the user's LDAP group membership controls
authorization. When RSA native mode authentication succeeds, group mapping occurs with LDAP. The
user's group is applied based on the group mapping configuration.
Note Before you configure RSA authentication with LDAP Group Mapping, ensure that you have the correct
installation or configuration of the third-party DLLs required to support this type of external database.
To configure RSA authentication with LDAP Group Mapping:
Step 1 Enable RSA support as described in RSA Support on the ACS SE, page 3-8.
Step 2 In the navigation bar, click External User Databases.
Step 3 Click Database Configuration.
ACS lists all possible external user database types.
Step 4 Click RSA SecurID Token and LDAP Group Mapping.
The External Database Configuration page appears.
Step 5 Click Configure.
The LDAP Native RSA Configuration page opens.
Step 6 Click Configure LDAP.
The RSA SecurID Token and LDAP Group Mapping Configuration page opens, as shown in Figure 3-8.