|Applies To||RSA Access Manager Agents versions 5.x|
RSA Access Manager Agents 4.x
New ISSO parameter cleartrust.agent.isso.handle_slave_auth_at_aserver=True.
|Issue||Agent 5.0 ISSO feature not compatible with older 4.x agents|
Newer 5.0 agents added to exisitng 4.x agents ISSO installatioon fails.
Older 4.x agents contacted the keyserver directly for encryption. Now there is a new feature to keep the keys off the webserver and allow the aserver to do the encryption
cleartrust.agent.isso.handle_slave_auth_at_aserver=True. The two methods are incompatible with each other. Ciphers and hash algorithms used in aserver are different than 4.x agents.
If working with a mixed 5.x and 4.x ISSO agent environemnt the folling parameter must be sat False and the keyserver info provided as was dione for the 4.x agenst
|Notes||This will be documented in future releases.|
|Legacy Article ID||a67671|