SDI Authentication will not work to secondary

[baldwintm]

I have two RSA SecurID authentication servers.
My ASA 5550 has a SDI Server group with the two servers.
When I use the "Test" feature in the ASDM to test one of them, it works fine. It will create a file in flash called <server_ip>.sdi
I then try to test the other server, and it fails. The error is generic.

If I delete this *.sdi file, and reboot the ASA, then try to test the second server, it works fine. But I subsequent testing of the first server does not work.

Why is this happening? Is there a way to test both servers?
Is this just a testing issue? Will it actually fail-over in a real disaster?

Thanks

 

[NetworkGhost]

What is the error?

http://www.wr-mem.com

 

[baldwintm]

The error indicated that the server was unreachable.

I found the problem.
One server was a replica of the other.

Once you authenticate to one server (either primary, or replica), it will download a list of replicas. If the primary is unavailable, it will use this list to contact the next replica.

The ASA allows you to define multiple STAND-ALONE SDI servers.