Configure an Agent for Trusted Realm Authentication
You must specify which authentication agents are available for trusted realm authentication.
On each agent in your realm, you specify one of the following:
Not open to trusted users
Open to all trusted users
Open only to trusted users in trusted user groups
For a one-way trust, the trusted realm administrator enables the agents for authentication in the trusted realm. For a two-way trust, you and the trusted realm administrator enable the agents in both your realms.
Before you begin
- Add a Trusted Realm
Create a new agent configuration file that specifies 25 seconds for a response from the server. For instructions, see Generate the Authentication Manager Configuration File.
Procedure
In the Security Console, click Access > Authentication Agents > Manage Existing.
Use the search fields to find the agent that you want to configure.
From the search results, click the authentication agent that you want to configure.
From the context menu, click Edit.
Do one of the following:
If you do not want trusted users to access this agent:
Under Trusted Realm Settings, ensure that Enable Trusted Realm Authentication is not selected.
Click Save.
If you want trusted users to access this agent:
Under Trusted Realm Settings, select Enable Trusted Realm Authentication.
For Trusted User Authentication, select one of the following:
Open to all Trusted Users. This option automatically designates users from a trusted realm as trusted users after successful authentication.
Only Trusted Users in Trusted User Groups with access to the agent can authenticate. These trusted users and trusted user groups are manually created by the administrator.
Click Save.
Related Concepts
Related Articles
Add an Identity Attribute Definition Number of Views Delete a Trusted Realm Number of Views Enable a Trusted Realm Number of Views RSA SecurID Tokens Number of Views Trusted Realms Number of Views
