|Applies To||RSA Product Set : SecurID|
RSA Product/Service Type : RSA Authentication Manager
RSA Version/Condition: 8.1 Service Pack 1
Platform : SUSE Enterprise Linux
O/S Version : 11 Service Pack 3
Product Description : SecurID Appliance
|Issue||From the Security Console, the real-time authentication activity monitor reports 'Node secret mismatch: cleared on agent but not on server' or 'Node secret mismatch: cleared on server but not on agent' or 'Node secret mismatch: agent and server using different node secrets'.|
|Tasks||To reset the node secret (CISCO ACS)|
|Resolution||Where a node secret mismatch appears in the real-time authentication activity monitor or an authentication activity report an administrator must reset the node secret.|
|Notes||After the authentication agent (CISCO ACS) initially communicates with the authentication manager instance, a node secret is generated; where a copy is stored in the authentication agent record in the authentication manager database and another copy of the node secret is send to the authentication agent.|
Activity Key: Node secret sent is seen in a real-time authentication activity monitor when the authentication manager sends a node secret to the authentication agent.
Refer to the URL https://community.emc.com/docs/DOC-37405 for the RSA Ready integration guide for Cisco Secure Access Control System (ACS) and RSA Authentication Manager 8.1.