000035983 - How to setup RSA Archer for Windows authentication across multiple domains

Document created by RSA Customer Support Employee on Feb 2, 2018
Version 1Show Document
  • View in full screen mode

Article Content

Article Number000035983
Applies ToRSA Product Set: Archer (On-Premise)
RSA Version/Condition: 6.3
Platform: Windows
ResolutionFollow the instructions below.
  1. The Archer server needs to have a two way trust relationship with all domains involved.
  2. Do not set a default domain in Archer. This is set under Administration -> Access Control -> LDAP Configurations -> Make sure that nothing is set in the default column.
  3. The domain name in Archer needs to be set to the USERDOMAIN for the user. To set this navigate to Administration -> Access Control -> LDAP Configurations -> select the LDAP configuration/domain -> Configuration tab.
User-added image

The USERDOMAIN value can be found from a user’s machine who is on the domain where authentication to RSA Archeris needed following the steps below.
  1. Open the command prompt.
  2. Type set and hit enter.
  3. In the results look for the following: USERDOMAIN=
User-added image