Enable Cloud Authentication Issues and Solutions

Document created by RSA Information Design and Development on Apr 30, 2019
Version 1Show Document
  • View in full screen mode

If you receive an error that is related to enabling Cloud authentication on the Security Console Home page, perform the tasks listed in the following table.





An error message states that the node secret is not available on the authentication agent.


The node secret does not exist on the authentication agent, but there is no error message.

The node secret encrypts communication between an authentication agent and Authentication Manager. Node secrets are required for users to authenticate on RSA authentication agents.

In a new authentication agent deployment, Authentication Manager automatically creates and sends the node secret to the authentication agent in response to the first successful authentication on the agent. A user must first authenticate to the agent with an RSA SecurID hardware token, an RSA SecurID software token, or a fixed passcode, or you must manually create the node secret with the Node Secret Load Utility. Use the RSA SecurID Authenticate app does not create the node secret.

You might need to refresh the node secret when an administrator has cleared the node secret on both an authentication agent and the Authentication Manager instance. For instructions, see Refresh the Node Secret .

A user already has the maximum number of tokens

You can assign up to three active tokens per user, unless an administrator reduces this number, as described in Restrict the Number of Active Tokens per User. The RSA SecurID Authenticate app counts against this limit.

Disable or unassign at least one active token.