6-17
User Guide for Cisco Secure ACS for Windows Server
78-14696-01, Version 3.1
Chapter 6 Setting Up and Managing User Groups
Configuration-specific User Group Settings
Perform this procedure to allow a token to be cached. This means users can use a
second B channel without having to enter a second one-time password (OTP).
Caution
This option is for use with token caching only for ISDN terminal adapters. You
should fully understand token caching and ISDN concepts and principles before
implementing this option. Token caching allows you to connect to multiple B
channels without having to provide a token for each channel connection. Token
card settings are applied to all users in the selected group.
Options for token caching include the following:
•
Session—You can select Session to cache the token for the entire session.
This allows the second B channel to dynamically go in and out of service.
•
Duration—You can select Duration and specify a period of time to have the
token cached (from the time of first authentication). If this time period
expires, the user cannot start a second B channel.
•
Session and Duration—You can select both Session and Duration so that, if
the session runs longer than the duration value, a new token is required to
open a second B channel. Type a value high enough to allow the token to be
cached for the entire session. If the session runs longer than the duration
value, a new token is required to open a second B channel.
To set token card settings for a user group, follow these steps:
Step 1
In the navigation bar, click Group Setup.
Result: The Group Setup Select page opens.
Step 2
From the Group list, select a group, and then click Edit Settings.
Result: The Group Settings page displays the name of the group at its top.
Step 3
From the Jump To list at the top of the page, choose Token Cards.
Step 4
In the Token Card Settings table, to cache the token for the entire session, select
Session.