000014626 - RADIUS authentication failures with RSA Authentication Manager 6.1

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 3Show Document
  • View in full screen mode

Article Content

Article Number000014626
Applies ToRSA Product Set:  SecuriD
RSA Product/Service Type:  Authentication Manager
RSA Version/Condition:  6.1
Issue
  • Performing a RADIUS authentication test via NTRadPing returns an Access-Reject response and nothing is shown in the Authentication Manager log monitor.
  • The following errors are seen in the RADIUS <date>.log file (for example, the 20160901.log in the ..\RSA Radius\Service directory). 
    • Unable to find user <username> with matching password 
    • SecurID authentication method disabled because "sdconf.rec" file not present 
Cause
  • The error message SecurID authentication method disabled because sdconf.rec file not present in the log file suggests that the sdconf.rec is missing from the ..\Windows\system32 directory on the host machine.
  • A incorrectly configured sdopts.rec file can cause the symptom of sdconf.rec file not present in the RADIUS log.
Resolution
  1. Ensure there is a valid sdconf.rec file in the ...\Windows\system32 directory.  You may copy the file from the ...\RSA Authentication Manager\data directory.
  2. After copying the file, launch the RSA Console Panel (Start > Run > RSA Security > RSA Authentication Manager Control Panel).  
  3. Click Stop & Start RSA Auth Mgr Services.  
  4. Select the RSA RADIUS Server and click Stop RADIUS.  
  5. When the button becomes enabled, click Start RADIUS.
  6. Test authentication again.
Legacy Article IDa42427

Attachments

    Outcomes