Cisco VPN client profile configuration parameters:
You can enable and disable the ability of the Cisco VPN client to only prompt the user for their PIN when using the RSA Software Token or the RSA SecurID 800 Token by adding the following setting in your profile file. This file is located by default in Program Files\Cisco Systems\VPN Client\Profiles. The file name is the name of the connection entry with a .pcf extension.
SDIUseHardwareToken = 0 or 1
0 = Yes use RSA Software Token (default)
1 = No, ignore RSA Software Token installed on the PC.
You can also change the prompts displayed to a user that is authenticating using RADIUS to better resemble an RSA SecurID authentication by setting the following parameter in the profile file.
Note: This setting will also allow the RSA Software Token and RSA SecurID 800 automation to work when using RADIUS as the authentication method with some Cisco VPN servers. See the comparability matrix under the Product Requirements section of this guide along with the Cisco documentation for more details.
RadiusSDI
0 = No (default)
1 = Yes
See the Cisco VPN client documentation for more information on these and other settings that can be used.
6
