Skip navigation

Log in to create and rate content, and to follow, bookmark, and share content with other members.

Cloud Authentication Service Help - Table of Contents

Document created by RSA Information Design and Development on Oct 20, 2017•Last modified by Joyce Cohen on Apr 9, 2018

Version 8Show Document

Like • Show 0 Likes0
Comment • 0
View in full screen mode

RSA SecurID Access Product Overview
- RSA SecurID Access Overview
- Cloud Authentication Service Overview
- RSA SecurID Access Editions
- High-Level Authentication Flows for Relying Parties
- High-Level Authentication Flow for RADIUS for the Cloud Authentication Service
- High-Level Authentication Flows for the SSO Agent
- Administration Console Dashboard
- Supported Browsers for the Cloud Administration Console
- Publishing Changes to the Identity Router and Cloud Authentication Service
- Setup Checklist for a New Deployment with a Relying Party
- Setup Checklist for a New Deployment with a RADIUS Client
- Setup Checklist for a New Deployment with the SSO Agent
Administrators
- Administrative Roles for the Cloud Administration Console
- Manage Administrators for the Cloud Administration Console
- Add or Promote Administrators for the Cloud Administration Console
- Change Your Password on the Cloud Administration Console at First Sign-In
- Change the Identity Router Administrator Password Using the Identity Router Setup Console
- Change Your Account Name and Password in the Cloud Administration Console
- Edit Administrator Settings on the Cloud Administration Console
- Delete an Administrator Account from the Cloud Administration Console
Company Settings
- Configure Company Information and Certificates
- Configure Session and Authentication Method Settings
- Password Lockout Examples
- Configure Authentication for the Cloud Administration Console
- Add an RSA SecurID Authentication API Key
- Configure Company Settings
Identity Routers
- Identity Router
- Manage Identity Routers
- Identity Router DNS Requirements
- Identity Router Virtual Appliance Hardware and Software Requirements
- Identity Router Default Ports
- Identity Router Network Interfaces
- Deploying an Identity Router
- Add an Identity Router Using the Administration Console
- Download the Identity Router Image
- Install the Identity Router Virtual Appliance for VMware
- Create the Identity Router Hyper-V® Virtual Machine
- Configure Initial Network Settings Using the Identity Router VM Console
- Configure Network Settings Using the Identity Router Setup Console
- Connect the Identity Router to the Cloud Administration Console
- Enable RADIUS on Identity Routers in a Cluster
- Configure Identity Router Security Levels
- Set a Temporary Password for the Identity Router Setup Console
- View Identity Router Status in the Cloud Administration Console
- View Network Diagnostics on an Identity Router
- Identity Router Status Servlet Conditions
- Identity Router Software Updates
- Update Identity Router Software for a Cluster
- Disconnect an Identity Router
- Remove an Identity Router
- Enable Access to the Identity Router API
Identity Sources
- Identity Sources for the Cloud Authentication Service
- Active Directory Attributes Synchronized for Authentication
- LDAPv3 Directory Server Attributes Synchronized for Authentication
- LDAPv3 Server Requirements to Enable Expired Password Handling in the Application Portal
- LDAPv3 User Verification for the Cloud Authentication Service
- Manage Identity Sources for the Cloud Authentication Service
- Add an Identity Source for the Cloud Authentication Service
- Manually Synchronize an Identity Source for the Cloud Authentication Service
- Schedule Identity Source Synchronization for the Cloud Authentication Service
- Test the Connection Between an Identity Router and a Directory Server
- Delete the Connection between the Cloud Authentication Service and an Identity Source
Assurance Levels
- Assurance Levels
- Configure Assurance Levels
- Evaluating Assurance Levels and Primary Authentication Status for Returning Authentication Methods
- User Session and Single Sign-On
Access Policies
- Access Policies
- Known Browser Attribute for Authentication Conditions
- Country Attribute for Authentication Conditions
- Trusted Location Attribute for Authentication Conditions
- Identity Confidence Attribute for Authentication Conditions
- Virtual Attributes in Access Policies (Active Directory Only)
- Portal Multifactor Authentication Policy
- Access Policy Examples
- Add a Trusted Location
- Delete a Trusted Location
- Add a Trusted Network
- Delete a Trusted Network
- Add an Access Policy
- Clone an Access Policy
- Delete an Access Policy
- View Access Policy Usage
- Manage Access Policies
Relying Parties
- Relying Parties
- SAML 2.0 Requirements for Service Providers
- Add a Relying Party
- Add a Service Provider
- Manage Relying Parties
- Example: SAML IdP for Cloud Authentication Service Assertion
Clusters and Backups
- Clusters
- Manage Clusters
- Load Balancer Requirements
- Add a Cluster
- Cluster Relationships
- Add a Cluster Relationship
- View Cluster Relationship Status
- Delete a Cluster
- Delete a Cluster Relationship
- HFED User Profiles and Backup Configuration
- Manage Cluster Backups
- Calculating Storage Space for HFED User Profile Backup Files
- Configure Backup Settings for a Single Cluster
- Configure an Automated Backup Schedule for All Clusters in the Deployment
- Back Up Now for a Single Cluster
- Restore a Backup for a Single Cluster
- Delete a Backup Configuration for a Single Cluster
RADIUS
- RADIUS for the Cloud Authentication Service Overview
- Deploying RADIUS for the Cloud Authentication Service
- RADIUS Clients for the Cloud Authentication Service
- Add a RADIUS Client for the Cloud Authentication Service
- RADIUS Profile for the Cloud Authentication Service
- Configure a RADIUS Profile for the Cloud Authentication Service
- Manage RADIUS for the Cloud Authentication Service
Certificates
- Certificates and Keys for Service Providers and Identity Providers for the SSO Agent
- Generate and Download a Certificate Bundle for Service Providers and Identity Providers for the SSO Agent
- Trusted Certificate Authorities for HFED and Trusted Headers Applications
- List of Trusted Certificate Authorities for HFED and Trusted Headers Applications
- Upload Certificates for Trusted Certificate Authorities
- Delete a Trusted Certificate Authority Certificate
Identity Providers
- Adding Identity Providers
- Manage Identity Providers
- Restricting Access to Automated IdPs Using Authentication Source Access Rules
- Add a SAML Version 2 Identity Provider
- Authentication Sources
- Manage Authentication Sources
- Add an Authentication Source
- Add Authentication Source Access Rules
- Reorder Authentication Sources
- Delete an Authentication Source
Web Applications
- Manage the Application Catalog
- Manage My Applications
- Add an Application to My Applications
- Delete an Application From My Applications
- Choosing a Connection Method to Add an SSO Agent Application
- SAML Applications
- Application Availability and Visibility
- Add a SAML Application
- Configure Advanced Settings for a SAML Connection
- Export SAML Metadata From an Application on the Identity Router
- HTTP Federation Proxy Applications
- Planning to Add an Application Using HTTP Federation Proxy
- HTTP Federation Proxy Planning Worksheet
- Add an Application Using HTTP Federation Proxy
- Trusted Headers
- Add an Application Using Trusted Headers
- Add a Bookmark Link in the Application Portal
- Deep Linking
User Application Portal
- User Application Portal
- Configure the Standard Web Application Portal
- Configure a Custom Portal Page for Web Applications
- Configure a Standard or Custom Application Portal Page
Authentication Methods
- Supported Authentication Methods
- Authentication Method Lockout
- Unlock All Tokencodes for a User
- Emergency Access for Cloud Authentication Service Users
Integrated Windows Authentication
- Integrated Windows Authentication
- Deploying Integrated Windows Authentication
- Download the Integrated Windows Authentication Connector Installer
- Install the Integrated Windows Authentication Connector
- Add Integrated Windows Authentication as an Identity Provider
- Test Integrated Windows Authentication
- Enable Automatic Integrated Windows Authentication
- Update the Integrated Windows Authentication Connector
End User Rollout
- RSA SecurID Access Rollout to Users
- Cloud Authentication Service User Requirements
- Sample Rollout Email for RSA SecurID Access Users
- RSA SecurID Authenticate Device Registration Overview
- Configure Firefox for Integrated Windows Authentication
- Configure Chrome and Microsoft Internet Explorer for Integrated Windows Authentication
- Configure Browsers to Trust the Cloud Authentication Service
Users and Devices
- Device Registration
- View User Devices and Status for the Cloud Authentication Service
- Run User Reports
- Delete a Cloud Authentication Service User's Device
- Manage User Phone Numbers
- Delete a Cloud Authentication Service User
RSA Authentication Manager Integration
- Enable RSA SecurID Token Users to Access Resources Protected by the Cloud Authentication Service
- Enable Cloud Authentication Service Users to Access Resources Protected by RSA SecurID
- Test the RSA Authentication Manager Connection
- Update the Connection between the Cloud Authentication Service and RSA Authentication Manager
Logging
- Logging for the Identity Router and Cloud Authentication Service
- User Event Message Components for the Cloud Authentication Service
- Monitor User Events in the Administration Console
- User Event Monitor Messages for the Cloud Authentication Service
- Identity Router Logging
- Configure Audit Logging in the Administration Console
- Set the Identity Router Logging Level
- Generate and Download an Identity Router Log Bundle
- Contents of Identity Router Log Bundle
- View the Identity Router System Log
- Audit Log Events for the Identity Router
- RSA SecurID Authenticate App Logging
Troubleshooting
- Troubleshooting Cloud Authentication Service User Issues
- Troubleshooting Administration Console Administration Issues
- Troubleshooting Cloud Authentication Service Identity Source Synchronization
- Access SSH for Identity Router Troubleshooting
- Grant RSA Customer Support Access to Your Account
Product Documentation and Support
- Product Documentation
- Support and Service for RSA SecurID Access
- RSA Ready Partner Program
Copyright
- Copyright

Attachments

Outcomes

Recommended Content

Incoming Links