000018492 - Windows NT ACE/Agent not Challenging users using Local Access Protection

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 22, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000018492
Applies ToMicrosoft Windows 2000
Microsoft Windows NT 4.0
RSA ACE/Agent 4.4 for Windows NT (no longer supported as of 3-3-2003)
IssueWindows NT ACE/Agent not Challenging users using Local Access Protection
When set to challenge users in a specified group for Local Access Protections, ACE/Agent does not challenge users.
Users can log in to the network without ACE/Agent asking for credentials, even if the Local  Access Protection is turned on.
CauseWhen enabling Local Access Protection on Windows machines, the services are being cached and the ACE/Agent does not recognize the changes until the machine is rebooted.
Resolution
1. Enable Local Access Protection.
2. Enable reserve password, and type in a password.
3. Reboot the machine.
4. Log in.

Note that the reserve password is only requested if the ACE/Server cannot be reached.

****** PLEASE MAKE SURE THAT YOU CAN AUTHENTICATE LOCALLY USING TEST AUTHENTICATION BEFORE ENABLING LOCAL ACCESS PROTECTION******
Legacy Article IDa756

Attachments

    Outcomes