New PIN and next Tokencode modes fail when dialing through a Cisco NAS
Originally Published: 2000-03-10
Article Number
Applies To
UNIX (AIX, HP-UX, Solaris)
Microsoft Windows NT 4.0
Cisco NAS
Issue
User token is in New PIN mode
User token is in next Tokencode mode
Next Tokencode mode fails
User unable to clear next Tokencode mode or to set up PIN because the standard timeout closes the connection
Authentication fails
Cause
Resolution
If the IOS version is 11.3 or greater, the following command can be entered in the Cisco NAS line config:
timeout login response XXX
where XXX represents the timeout value from 0 to 300 seconds. The default is 30, so we recommend to use 60.
With an IOS version of 12.3-7.T1, the following commands can be entered in the Cisco NAS line config:
For Dial-Up:
timeout login response XXX
login authentication RAS USERS
For VPN:
crypto isakmp xauth timeout XXX
Related Articles
Map drives inside of Windows to NAS Number of Views Cisco Router with IOS 12.2(2)XB/12.2(4)T or later unable to handle New PIN Mode and Next Tokencode Mode Authentications th… Number of Views Error encountered in Relying Party servlet: java.net.UnknownHostException:jacksonxx.na.rsa.net' appears in web browser whe… Number of Views How long can an Agent wait to send a next tokencode or new pin message? Number of Views How to contact support for the RSA enVision NAS 3500/ 7000 DAS2000 storage device Number of Views
Trending Articles
RSA Authentication Manager 8.9 Release Notes (January 2026) RSA Release Notes for RSA Authentication Manager 8.8 RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide Authentication Manager Supported Hardware and Upgrade Paths Quick Setup Guide - Passwordless Authentication in Windows MFA Agent for Active Directory
Don't see what you're looking for?
