- Login to the Windows Server as a local administrator where the web agent is installed.
- Disable User Account Control (UAC) settings.
- On the taskbar click Start.
- In the search field, type Change User Account Control settings.
- Click Open Change User Account Control settings.
- Pull the bar down to the bottom so the options for Never notify me when is set to Programs try to install software or make changes to my computer.
- Click OK.
- Disable the Windows firewall.
- Disable antivirus software, if enabled with IPS/IDS or Enabled with Enhanced Security.
- On the Control Panel, select and right click on the RSA Authentication Agent icon andchoose run as administrator.
- On the Advanced tab, set the IP Address Override. Change the default IP of 255.255.255.255 to the IP address of the Windows server where the RSA web agent is installed.
- Go back to the Main tab and do the test authentication from the RSA web agent by clicking Test Authentication with RSA Authentication Manager.
- The node secret will be sent from the RSA Authentication Manager to the web agent on the first successful authentication.
Look for the file named securid (with no file extension) in C:\Program Files\RSA Security\RSAWebAgent.
- While the node secret file is sent to the agent on the first authentication attempt, it is not used until subsequent authentications. To make sure the node secret is working correctly, repeat the test authentication four or five more times.
- Open a command prompt and run an iisreset.
- Do the test authentication from the protected website/OWA.
- If the test authentication from the protected website/OWA fails with the message below, check the node secret location on the IIS which the agent is protecting. This error happens because the protected website/OWA is looking for the node secret file in an incorrect location or where the file does not exist.
Node secret mismatch: Cleared on the agent but not on the server
- Copy the sdconf.rec, sdstatus.12 and securid files from C:\Program Files\RSA Security\RSAWebAgent to C:\Program Files (x86)\RSA Security\RSAWebAgent.
- Launch a command prompt and run iisreset.
- Now the test authentication will be successful from the protected website/OWA.