Embedded Identity Router in RSA Authentication Manager
If you want to connect RSA Authentication Manager 8.5 and later to Cloud Access Service (CAS), you can download and configure an identity router to each primary and replica instance. Every Cloud Access Service deployment requires at least one identity router.
The embedded identity router communicates with Cloud Access Service and does the following:
- Connects Cloud Access Service to your identity sources.
- Enforces access policies, which determine which applications users can access, when additional authentication is needed, and which authentication methods are required.
By deploying an embedded identity router in AM, you can avoid the time and effort of deploying separate identity routers in your on-premises network or in the Amazon Web Services cloud.
The embedded identity router does not support single sign-on (SSO) or RADIUS. To use these features, deploy your identity router on another platform. For more information, see Identity Routers.
To deploy the embedded identity router, see Quick Setup - Connect RSA Authentication Manager to the Cloud Access Service with an Embedded Identity Router.
Related Articles
Cloud Access Service Rollout to Users Number of Views Managing Cloud Access Service Connection Number of Views Authentication Methods for Cloud Access Service Users Number of Views Cloud Administration User Event Log API Number of Views Manage Users for Cloud Access Service Number of Views
Trending Articles
Downloading RSA Authentication Manager license files or RSA Software token seed records RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide Quick Setup Guide - Passwordless Authentication in Windows MFA Agent for Active Directory Mandatory Certificate Upgrade Required by 6th October 2025 for RSA MFA Agent for PAM, RSA MFA Agent for Apache, and Third … RSA Authentication Manager 8.9 Release Notes (January 2026)
