Support Support Downloads Knowledge Base Service Request Manager My Juniper Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

How does the SecurID authentication work?

0

0

Article ID: KB6474 KB Last Updated: 01 Jul 2010Version: 3.0
Summary:
How does the SecurID authentication work?
Symptoms:
How does the SecurID authentication work?

Solution:

This applies to all versions of ScreenOS and all NetScreen devices:

  1. The NetScreen device relays a passcode (the PIN and code from token) over a 56bit DES encrypted connection to the (SecurID) ACE Server. The ACE server responds with one of several possible values: OK, BAD, Next Code, or New PIN.
  2. If the NetScreen device receives an OK, access is granted.
  3. If it receives BAD, access is denied.
  4. If 'Next Code' is received, a new code (without the PIN) from the user is sent to the ACE Server.
  5. If 'New PIN' is received, the ACE Server either grants or asks the user for a PIN.
  6. When the ACE Server responds with either PIN Accepted or PIN Rejected, the connection is terminated. If the PIN was Accepted, the user must restart authentication using this PIN.

Here is the problem or goal:

  • How does the SecurID authentication work?

Applicable Products:

  • NetScreen-5
  • NetScreen-5XP
  • NetScreen-10
  • NetScreen-25
  • NetScreen-50
  • NetScreen-100
  • NetScreen-204
  • NetScreen-208
  • NetScreen- 500

Applicable ScreenOS:

  • 2.00
  • 2.01
  • 2.10
  • 2.50
  • 2.6.0
  • 2.6.1
  • 2.7.1
  • 2.8.0
  • 3.0.0
  • 3.0.1
  • 3.0.2
  • 3.1.0


Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Security Alerts and Vulnerabilities

Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search