You can perform two types of integration with RSA Authentication Manager.
|Integration Type||Performed From|
|Connect the Cloud Authentication Service to Authentication Manager||Cloud Administration Console|
|Connect Authentication Manager to the Cloud Authentication Service||The Security Console in Authentication Manager. Requires RSA Authentication Manager version 8.4 Patch 4 or later.|
Note: To enable the High Availability Tokencode feature, see Enable High Availability Tokencode in the Cloud Authentication Service.
You can connect the Cloud Authentication Service to Authentication Manager to allow users with RSA SecurID tokens to access SaaS and on-premises web applications and RADIUS clients protected by the Cloud Authentication Service. For configuration instructions, see Enable RSA SecurID Token Users to Access Resources Protected by the Cloud Authentication Service. Use the Platform > Authentication Manager page to test the connection.
After you connect Authentication Manager to the Cloud Authentication Service, Authentication Manager users can access agent-protected resources using the RSA SecurID Authenticate app on registered devices. You must select an access policy and generate the Registration Code. You will need the information generated on this page to configure the connection from the Security Console in Authentication Manager version 8.4 Patch 4 or later.
Before you begin
You must be a Super Admin for the Cloud Authentication Service.
Decide which access policy will be applied to all users who access these resources. The policy must contain at least one cloud authentication method that Authentication Manager supports. If you decide to rename this policy or select a different policy at a later date, you must regenerate the Registration Code and perform the connection steps again in the Security Console. You can edit settings within the policy at any time without reconnecting.
In the Cloud Administration Console, click Platform > Authentication Manager.
Select an access policy.
Click Generate Code. The code is valid for 24 hours.
After you finish
Return to the Security Console. Copy the Registration Code and Registration URL to the Security Console. Either continue deploying the embedded identity router as described in Configure an Embedded Identity Router or complete the wizard as described in Connect RSA Authentication Manager to the Cloud Authentication Service.