000033643 - RSA SecureID Windows Authentication Agent 7.x Causing Windows Logon Options To Display Incorrectly

Document created by RSA Customer Support Employee on Aug 9, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 3Show Document
  • View in full screen mode

Article Content

Article Number000033643
Applies ToRSA Product Set: SecurID
RSA Product/Service Type: Authentication Agent for Windows
RSA Version/Condition: 7.x
Platform: Windows
O/S Version: 2008 Server R2 Enterprise (64 bit)
 
IssueWindows Logon Options policy incorrectly displays the last logon time and number of failed logon attempts.
Logon always displays the current time instead of the last logon time, and always display zero failed logon attempts.
Last logon and failed logon info displays correctly if SecureID is uninstalled.
GPO:
Computer Configuration > Administrative Templates > Windows Components > Windows Logon Options
OR
User Configuration > Administrative Templates > Windows Components > Windows Logon Options
User-added image
 
CauseThis is a default behaviour with how the Auth Agent handles Failed authentications.
ResolutionAdd the following Registry key:
 
  1. Create a DWORD value PreserveFailedAuthHistory under
    HKEY_LOCAL_MACHINE\SOFTWARE\Policies\RSA\RSA Desktop\Common Settings
  2. Set the value to 1 to display information about previous logons.
WorkaroundAnother way is to used the attached GPO template and enable it to have the same effect.

Outcomes