|Applies To||RSA Authentication Agent for Windows 7.0.2|
RSA Authentication Agent for Windows 7.0.3
Windows Server 2008 R2
Agent configured to challenge all except, specifying a local group as the "exempt" group.
Domain users / administrators they don't want to be SecurID challenged are in the local group configured to be exempt from SecurID challenge
|Issue||User was trying to exclude administrators from SecurID challenge and although these users were in the local group selected to exclude from SecurID Authentication.|
Users who are in the exempt from SecurID authentication group log on to the local system using the syntax .\<user id>. This can be used in place of the syntax <local machine>\<user id>.
The ace agent passes on the user id including the ".\". It can not find the user in the exempt group and challenges them by default.
|Resolution||A hot fix has been developed for this issue and can be obtained by contacting RSA Customer Service. That hot fix is RSA Authentication Agent for Windows 7.0.3 build 119.|
|Legacy Article ID||a60409|