000037438 - Certificate missing from the trusted root certificates during installation of RSA Authentication 7.4 Agent for Windows

Document created by RSA Customer Support Employee on May 8, 2019Last modified by RSA Customer Support Employee on Sep 26, 2019
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000037438
Applies ToRSA Product Set:  SecurID
RSA Product/Service Type:  Authentication Agent for Windows
RSA Version/Condition:  7.4.x
While trying to install the RSA Authentication Agent 7.4 for Windows, the following error message displays:

Installation stopped. RSA Authentication agent needs a certificate missing from the trusted Root Certificates. Contact your administrator.

User-added image

No prompt is presented to allow for the selection or import of the certificate file.
CauseOn machines where there is no internet access, certain certificates that are automatically provisioned on Windows operating systems may not be present.
A Windows administrator must use the appropriate Microsoft root update mechanism to install the certificate in the Trusted Root CA store of the machine account.
ResolutionAlthough RSA does not give explicit instructions on Windows processes or tasks, we assume a certain proficiency with Windows, and the RSA Authentication Agent for Windows runs on six different Windows operating systems.

The RSA Authentication Agent for Windows requires the trusted root certificate VeriSign Class 3 Public Primary Certification Authority - G5, Symantec Class 3 SHA256 Code signing CA - G2 and RSA Security LLC  in the Trusted Root CA store of the machine account.
Also, the trust must be set for the computer, not just an user account.
The chain of certificates.