000037744 - Identity router (IDR) registration fails with error cannot connect to Cloud Authentication Service for RSA SecurID Access

Document created by RSA Customer Support Employee on Jul 22, 2019
Version 1Show Document
  • View in full screen mode

Article Content

Article Number000037744
Applies ToRSA Product Set: SecurID Access 
RSA Product/Service Type: Identity Router (IDR) 
IssueThis article explains the use case of failure of RSA SecurID Access IDR registration when using a proxy server from the IDR management console to connect to the CAS server for registration.
The following error is seen:

Checking for connection for authentication and product maintenance with error Cannot connect to cloud authentication service

CauseThe symplified.log shows that the proxy ID credentials used are causing this failure:

Error code: Connection failed
Error message: Couldn't resolve proxy 'IDacc0unt@abcproxy.abc.com'

The character in the password was being parsed incorrectly

The credentials are passed to the proxy server in the format <username>:<password>@<proxyhostname>  Because of the additional @ character in the password, it was unable to resolve the proxy hostname correctly. 

ResolutionUse a different user credential which does not have @ as one of the character in the password to register the IDR successfully.