New PIN and next Tokencode modes fail when dialing through a Cisco NAS
Originally Published: 2000-03-10
Article Number
Applies To
UNIX (AIX, HP-UX, Solaris)
Microsoft Windows NT 4.0
Cisco NAS
Issue
User token is in New PIN mode
User token is in next Tokencode mode
Next Tokencode mode fails
User unable to clear next Tokencode mode or to set up PIN because the standard timeout closes the connection
Authentication fails
Cause
Resolution
If the IOS version is 11.3 or greater, the following command can be entered in the Cisco NAS line config:
timeout login response XXX
where XXX represents the timeout value from 0 to 300 seconds. The default is 30, so we recommend to use 60.
With an IOS version of 12.3-7.T1, the following commands can be entered in the Cisco NAS line config:
For Dial-Up:
timeout login response XXX
login authentication RAS USERS
For VPN:
crypto isakmp xauth timeout XXX
Related Articles
Cisco Router with IOS 12.2(2)XB/12.2(4)T or later unable to handle New PIN Mode and Next Tokencode Mode Authentications th… Number of Views How to set PINs and navigate Next Tokencode Mode for RSA SecurID Tokens using NTRadPing on SecurID Authentication Manager … Number of Views Incompatibility with Encoding of Private Key causes various issues on an RSA SecurID Access Identity Router running SLES12… Number of Views RSA Identity Governance and Lifecycle RESTful web service response: java.lang.IllegalStateException Number of Views Error: '103: Invalid Browser State. Either your browser does not support HTTP Cookies or you took too long to respond to t… Number of Views
Trending Articles
RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide RSA Authentication Manager 8.9 Release Notes (January 2026) RSA Release Notes for RSA Authentication Manager 8.8 Deploying RSA Authenticator 6.2.2 for Windows Using DISM Downloading RSA Authentication Manager license files or RSA Software token seed records
Don't see what you're looking for?
