I have the demo pack of RSA Authentication, with two tokens. I've installed the server on an internal machine, and specified my ISA Server as an Agent host as specified in RSA's documentation.
It's supposed to be easy to do, but if I specify a user in RSA and allocate a token to them, and give it a password, I'm then trying the SDTEST util that comes with ISA to check communications. However, I always get "Access Denied" whether I use the password or the token passcode.
I've enabled Securid on the OWA web publishing rule, and it still does no more than give me the standard OWA login page.
The RSA documentation on this is a bit patchy. Does anyone know of anything out there that's helpful?
I'm finally getting a demo pack from RSA next week! (thanks RSA!). I've been wanting to work with this product for over three years and now I'll be able to test it out. I hope to get the testing started next week and will doc out everything that I do and post it to the site. I think the SecurID is really cool and hope to get three or four articles up on how to use it for OWA and VPN access.
From: Falls Church, VA
I have SecurID working on my dev ISA 2004 sp1 server. And it currently works in production with ISA 2000.
The link posted is a pretty good writeup of what is needed. Make sure you have done the steps in the bottom section on troubleshooting access denied errors. I think that says the same thing as what is in the help file on the server.
The one thing I dont see mentioned is the system policy. Make sure the system policy has securID enabled and allowed to talk to the appropriate network. By default this is the internal network, so make sure your securID server is on that network.