Certified: 25th February, 2020
Solution Summary
Use Case
When integrated, Okta SSO end users must authenticate with RSA SecurID Access to sign in. Okta SSO can integrate using SSO Agent or Relying Party.
Integration Types
SSO Agent integrations use SAML 2.0 technology to direct users’ web browsers to Cloud Authentication Service for authentication. SSO Agents also provide Single Sign-On to other applications using the RSA Application Portal.
Relying party integrations use SAML 2.0 to direct users’ web browsers to Cloud Authentication Service for authentication.
Supported Features
This section shows all of the supported features by integration type and by RSA SecurID Access component. Use this information to determine which integration type and which RSA SecurID Access component your deployment will use. The next section in this guide contains the steps to integrate RSA SecurID Access with Okta SSO for each integration type.
Okta SSO Integration with RSA Cloud Authentication Service
| Authentication Methods | Authentication API | RADIUS | Relying Party | SSO Agent SAML |
|---|---|---|---|---|
| RSA SecurID | - | - |  | |
| LDAP Password | - | - | | |
| Authenticate Approve | - | - | | |
| Authenticate Tokencode | - | - | | |
| Device Biometrics | - | - | | |
| SMS Tokencode | - | - | | |
| Voice Tokencode | - | - | | |
| FIDO Token | n/a | n/a | | |
| Identity Assurance | - | - | | |
Okta SSO Integration with RSA Authentication Manager
| Authentication Methods | Authentication API | RADIUS | Authentication Agent |
|---|---|---|---|
| RSA SecurID | - | - | - |
| On-Demand Authentication | - | - | - |
| Risk-Based Authentication | n/a | - | - |
| Supported |
| - | Not supported |
| n/t | Not yet tested or documented, but may be possible. |
| n/a | Not applicable |
Configuration Summary
The following links provide instructions on how to integrate Okta SSO with RSA SecurID Access.
This document is not intended to suggest optimum installations or configurations. It assumes that the reader has both working knowledge of all products involved, and the ability to perform the tasks outlined in this section. Administrators should have access to the product documentation for all products in order to install the required components. All RSA SecurID Access and Okta SSO components must be installed and working prior to the integration.
Integration Configuration
Certification Details
Date of testing: 10th February, 2020
RSA Cloud Authentication Service
Okta SSO
Known Issues
No known issues.