|
|
The reset securid secret command deletes the SecurID secrets stored in memory.
The first time an VPN 5000 concentrator contacts an ACE/Server, they exchange a secret based in part on the VPN 5000 concentrator's IP address. Any major changes to the VPN 5000 concentrator's configuration (such as changing its IP address) will mean that the VPN 5000 concentrator and the ACE/Server will no longer be able to communicate. To get around this, you must use the reset securid secret command on the VPN 5000 concentrator and also uncheck the Sent Node Secret checkbox in the ACE/Server's Add Client Dialog Box (which can be accessed using the Add Client option under the Client menu).
After both of these steps have been completed, the two devices will do a new secret exchange and will be able to communicate again.
reset securid secret {IP_address | all}
IP_Address | This option limits the command to apply only to the secret for a specific ACE/Server using its IP address. It must be a legal IP address specified in dotted-decimal format. |
all | This option specifies that the secrets for all ACE/Servers should be deleted. |
| Command | Description |
|---|---|
configure SecurID | Configures the concentrator for communication with a SecurID server for user authentication |
show securid | Shows SecurID statistics and servers |
Posted: Wed Sep 27 11:17:56 PDT 2000
Copyright 1989-2000©Cisco Systems Inc.