000033252 - Authentication Takes Too Long When Using RSA Authentication Agent SDK 8.1.3 for Java on Red Hat

Document created by RSA Customer Support Employee on Jun 15, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000033252
Applies ToRSA Product Set : SecurID
RSA Product/Service Type : RSA Authentication Agent SDK
RSA Version/Condition: 8.1 Service Pack 3
Platform : Red Hat Enterprise Linux
O/S Version : 5.x, 6.x
IssueRunning the JAVA example AuthUser in debug mode appears to pause at line
[2016-06-03 11:04:44,909] main - CryptoJ.jar is in classpath, using that to invoke Non-FIPS version of JSafe functions

for several seconds or minutes before the execution of the code continues without error.
CauseThis is a known issue to RSA and is related to the random number generator on the Red Hat platform. This is not related to the RSA Authentication Agent SDK for Java configuration but about generating the random number through BSafe which in-turn uses a system resource (/dev/random).
WorkaroundThe workaround is for the installed JRE(securerandom.source in java.security) on the system to use /dev/urandom.
Alternatively, perform these steps as root on the Red Hat platform:
  1. rm /dev/random
  2. mknod -m 0644 /dev/random c 1 9
Now, run the example AuthUser to confirm the issue is resolved.
NotesOther references that cover what is occurring can be found at URL http://bugs.java.com/view_bug.do?bug_id=6708214 & URL http://bugs.java.com/view_bug.do?bug_id=6202721.