RSA SecurID Access: Configuring the SSO Agent

Document created by Elizabeth Maloney Employee on Nov 1, 2016Last modified by Joseph Cantor on Sep 10, 2019
Version 12Show Document
  • View in full screen mode

Access Training



In order to register for a class, you need to first create an EMC account

If you need further assistance, contact us



This On-demand learning presents details of the steps and information required to configure the RSA SecurID Access component.


This On-demand learning describes the post-installation configurations required to make the RSA SecurID Access SSO Agent component operational. The purpose of various configurations is discussed and the process to accomplish each configuration is described along with the options to be considered. The SSO Agent is a component available to RSA SecurID Access Enterprise and Premium Edition customers. Demonstrations of the key configurations are provided to augment the descriptions and to show the specific steps involved.


RSA SecurID Access customers interested in understanding more about how the SSO Agent can be configured for various applications and access policies.

Delivery Type
On-Demand Learning

2 hours


Prerequisite Knowledge/Skills
Students should have familiarity with the concepts of: strong (multi-factor) user authentication, cloud applications, single sign-on, and networking communication. Students should view the following RSA University on-demand learning courses prior to viewing this course to help provide the background information about this product:

Learning Objectives
Upon successful completion of this course, participants should be able to:

  • Identify information required for configuring single sign-on through the SSO Agent Application Portal
  • Configure application access rules and policies
  •  Add an Identity Source
  •  Add identity providers such as Integrated Windows Authentication (IWA)
  •  Deploy an IWA connector
  • Integrate RSA SecurID Authentication to portal applicaitons


Course Outline

  •  Configuring an LDAP Directory Server Connection
    • LDAP Directory Connections
    • Identity Sources
    • User Attributes and attribute mapping
    • LDAP Synchronization


  •  Configuring the Application Portal
    • The User Application Portal
    • Standard Portal Customization
    • Configuring Company Domain and Certificates


  •  Adding Web Applications
    • Adding an Application to ‘My Applications
    • Application Types to Create from Template: SAML, HFED, and Trusted Header
    • Application Availability and Visibility


  • Configuring SAML Applications
    • SAML Connections
    • SAML Authentication Workflow
    • IdP-Initiated and SP-Initiated SSO Profiles
    • Adding a SAML Application


  •  Configuring User Access Policies
    • Access Policies Overview
    • Rules and Rule Sets
    • Assurance Level
    • Rule Construction
    • Adding an Access Policy


  •  Configuring Integrated Windows Authentication
    • Integrated Windows Authentication (IWA)
    • Overview Deploying IWA
    • Installing the IWA Connector
    • Adding IWA as an Identity Provider 
    • Enabling IWA as an Automatic Authentication Source
    • Configuring Users’ Browsers to Support IWA


  • Adding Authentication Sources to Automate the Use of Configured Identity Provider
    • Automated Use of Identity Providers
    • Adding an Authentication Source
  •  Connecting the SSO Agent to RSA Authentication Manager
    • Configuring a Static Route to RSA Authentication Manager
    • Using an RSA SecurID passcode for authentication in the Application Portal



  • Configuring an Identity Source
  • Configuring End User Portal Access
  • Configuring a Web Application through Discovery
  • Configuring an Application Catalog Application
  • Configuring a SAML Application and Using SAML Application Metadata
  • Configuring Access Policies
  • Configuring Integrated Windows Authentication (IWA)
  • Configuring RSA SecurID Passcode Authentication






Access Training



In order to register for a class, you need to first create an EMC account

If you need further assistance, contact us