Related Documentation
- J Series
- Understanding External Authentication Servers
- Example: Configuring SecurID User Authentication
- SRX Series
- Understanding External Authentication Servers
- Example: Configuring SecurID User Authentication
- Additional Information
- Junos OS Feature Support Reference for SRX Series and J Series Devices
Example: Deleting the SecurID Node Secret File
This example shows how to delete the node secret file.
Requirements
Before you begin, confirm that it is necessary to delete the SecurID node secret file.
Overview
When the Juniper Networks device initially communicates successfully with the SecurID server, a node secret file is created for it automatically. The file is created as a result of the handshake between the Juniper Networks device and the SecurID server after the software authenticates the first user successfully. All subsequent communication between the Juniper Networks device and the SecurID server relies on this secret as a representation of trust between the two nodes instead of repeating the handshake with each authentication request.
Under normal circumstances you should not delete the node secret file. In the rare case that you must do so, for example, to debug a serious problem, you can use the clear command to remove the file.
 | Warning: If you delete the file, you must deselect a box on the SecurID server to indicate that the node secret file for the Juniper Networks device and the SecurID server no longer exists. Otherwise, authentication attempts will fail. |
Configuration
Step-by-Step Procedure
To delete the node secret file:
- Use the clear command to remove the node secret
file. During subsequent user authentication, the device reestablishes
a shared secret with the SecurID server and re-creates the node secret
file. From operational mode, enter the clear network-access command to clear the securid-node-secret-file for the Juniper
Networks device.
user@host> clear network-access securid-node-secret-file - From operational mode, confirm your deletion by entering
the show network-access securid-node-secret-file command.
If the output does not display, repeat the instructions in this example
to correct it.
user@host> show network-access securid-node-secret-file
Verification
Verify the deletion by entering the show network-access securid-node-secret-file command.
Related Documentation
- J Series
- Understanding External Authentication Servers
- Example: Configuring SecurID User Authentication
- SRX Series
- Understanding External Authentication Servers
- Example: Configuring SecurID User Authentication
- Additional Information
- Junos OS Feature Support Reference for SRX Series and J Series Devices
