BeyondTrust Corporation BeyondInsight 6.10 - RADIUS with CAS Configuration - RSA Ready SecurID Access Implementation Guide

Document created by RSA Information Design and Development Employee on May 19, 2020Last modified by RSA Information Design and Development Employee on May 19, 2020
Version 3Show Document
  • View in full screen mode

This section describes how to integrate BeyondTrust CorporationBeyondInsight with RSA Cloud Authentication Service using RADIUS.

Architecture Diagram

Configure RSA Cloud Authentication Service

To configure RADIUS for Cloud Authentication Service for use with a RADIUS client, you must first configure a RADIUS client in the RSA SecurID Access Console.

Sin into the RSA Cloud Administrative Console and browse to Authentication Clients > RADIUS > Add RADIUS Client and enter the Name, IP Address and Shared Secret.

Click Publish.

 

Configure BeyondTrust Corporation BeyondInsight

Perform these steps to configure BeyondTrust Corporation BeyondInsight as a RADIUS client to RSA Cloud Authentication Service.

Procedure

  1. Login to BeyondTrust BeyondInsight and browse to Configuration > Radius two factor authentication
  2. Click on Create RADIUS Alias.
  3. Add RADIUS server details.
    1. Filter - Select "All Users" if all the mapped AD users are needed for RADIUS authentication.
    2. Host - Enter IP Address of RSA Identity Router.
    3. Authentication Mechanism - Select as PAP.
    4. Authentication Request Timeout - Recommended 45 Seconds
    5. Authentication Port - Set to 1812 or 1645.
    6. Shared Secret - Enter the RADIUS shared secret. It must match the secret as entered in the RSA RADIUS server.
  4. Click Save Changess

In the RADIUS client settings configured in the Cloud Administration Console (Authentication Clients > RADIUS), if Automatically prompt for push notification methods is enabled, make sure the server timeout (Allow users to select authentication method after timeout) does not exceed the client’s connection timeout.

Next Step: Proceed to the Use Case Configuration Summary section for information on how to apply the RADIUS configuration to your use case.

 
You are here
BeyondTrust Corporation BeyondInsight 6.10 - RADIUS with CAS Configuration - RSA Ready SecurID Access Implementation Guide

Attachments

    Outcomes