Cherry Smart Card-Reader stops working after the RSA Authentication Agent for Windows is installed
Originally Published: 2016-08-03
Article Number
Applies To
RSA Product/Service Type: Authentication Agent for Windows
RSA Product/Service Type: RSA Authentication Client (RAC)
RSA Version/Condition: 3.6
Platform: Windows
Platform (Other): Cherry Smart Card-Reader
O/S Version: 7 x64
Issue
This has been tested on a workstation to verify the behavior. Without changing anything, the card reader works without issue. After installing the RSA agent, the card reader works initially and then stops after locking the workstation. After rebooting the workstation, the user can login using the card reader. After locking the workstation, he cannot.
Steps to reproduce
The steps below were taken to reproduce the issue:| Time | Action/Result |
|---|---|
| 5:45 | RSA authentication successful. |
| 5:46 | Lock workstation. Login with smart card fails. |
| 5:47 | RSA authentication successful. |
| 5:49 | Ran RSA agent install and chose Modify. |
| 5:51 | Locked workstation and smart card login is successful. |
| 5:52 | Locked workstation and smart card login is successful. |
| 5:53 | Reboot workstation. |
| 5:56 | Login with smart card is successful. |
It appears that the RSA agent isn't getting fully installed and the subsequent Modify fixes something. The event viewer shows that the RSA agent install completed successfully with status of 0.
Cause
The ActivIDentity and Cherry cards have the same ATR as the old RSA 5200C smart card. The RSA RAC is trying to connect to this card, causing a conflict between the SID800 and the ActivIDentity or Cherry card and client.
* CAC = Common Access Card, Smart" ID card for active-duty military personnel, selected reserve, DoD civilian employees, and eligible contractor personnel.
Resolution
HKEY_LOCAL_MACHINE\SOFTWARE\RSA\RSA Desktop Common\Smart Card Registry Settings\SmartCards\RSA SecurID 5200C
Make sure to delete only the RSA SecurID 5200C key.
Workaround
Related Articles
Correct and annotated example of RSA ACE/Server services file 31Number of Views The Offline Task runtime keeps increasing 27Number of Views API authentication agent error message "org.jcp.xml.dsig.internal.dom.DOMXMLSignatureFactory cannot be cast to javax.xml.c… 27Number of Views To prevent installation failure if Windows NT Domain controller is not present. 16Number of Views enVision: Webserver crashes or will not stay started 2Number of Views
Trending Articles
RSA Release Notes for RSA Authentication Manager 8.8 RSA MFA Agent 2.5 for Microsoft Windows Installation and Administration Guide RSA Authentication Manager Upgrade Process Authentication Manager Security Console and Operations Console Inaccessible After Certificate Update RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide
Don't see what you're looking for?