RSA (formerly SDI) SecurID authentication methods include physical SecurID cards and keychain fobs, and SecurID PC software (formerly called SoftID). SecurID cards also vary: with some cards, the passcode is a combination of a PIN and a cardcode; with others, you enter a PIN on the card and it displays a passcode. Ask your system administrator for the correct procedure.
Authentication via these methods also varies slightly for different operating systems. If you use an RSA method, the VPN Client displays the appropriate RSA user authentication window. The title bar identifies the connection entry name.
To display an authentication window asking for your username and passcode, perform the following steps If you are using SoftID, it must be running on your PC.
In the Username field, enter your username. This entry is case-sensitive.
In the Passcode field, enter a SecurID code. With SoftID, you can copy this code from the SoftID window and paste it here. Your administrator will tell you what you need to enter here, depending on the type of tokencard you are using.
If you are using SoftID version 1.x under Windows NT or SecurID version 2.0 under any operating system, the VPN Client displays an authentication window asking for your username and PIN.
In the Username field, enter your username. This entry is case-sensitive.
In the PIN field, enter your SoftID or SecurID PIN. The VPN Client gets the passcode from SoftID or SecurID by communicating directly with SoftID or SecurID. The SoftID or SecurID application must be installed but does not have to be running on your PC.
The first time you authenticate using SecurID or SoftID (all operating systems), or if you are using a new SecurID card, and if the RSA administrator allows you to create your own PIN, the authentication program asks if you want to create your own PIN.
Enter your response: y for yes or n for no. No is the default response. Then, click OK. What happens next depends on your response.
To receive a PIN, you must respond y for yes and then click OK. When you do, the authentication program generates a PIN for you and displays it. Be sure to remember your PIN.
Sometimes SecurID authentication prompts you to enter the next cardcode from your token card. SecurID displays this prompt either to resynchronize the token card with the RSA server, or because it noticed several unsuccessful attempts to authenticate with this username.
The SecurID Next Cardcode Mode window might appear.
In the Passcode field, enter the next code from your token card. This field requires only a cardcode. Do not include your PIN as part of the passcode.
Now continue to "Viewing Connection Information."
Copyright © 1998-2004, Cisco Systems, Inc. All rights reserved.