ID Plus Plans - Legacy
a month ago

ID Plus Plans - Legacy

RSA offers three ID Plus subscription license plans: E1, E2 and E3. For the new plans, see ID Plus Plans - New.

The high-level details are described below:

 

Authentication Components

The following table shows the authentication software available with each license.

 ID Plus E1ID Plus E2ID Plus E3
Cloud Access Service (CAS)IncludedIncludedIncluded

Authentication Manager Server Enterprise License:

1 Primary Instance and up to 15 Replica Instances

 IncludedIncluded
AM server with AM Bulk Administration (AMBA) IncludedIncluded

 

RSA SecurID® Federal

RSA offers a FedRAMP-authorized version of the ID Plus E2 and ID Plus E3 licenses. RSA SecurID® Federal includes a separate cloud instance reserved for United States Federal Government customers and other authorized agencies.

RSA SecurID® Federal does not support authentication with SMS OTP or Voice OTP.

Authentication Integrations

The following table shows the authentication integrations available with each license.

 Standard
Agents		RSA Ready
Agents

RADIUS 

Agents

RSA
Authentication API		SAML AuthenticationWeb Proxy
(Trusted Headers)		Web Proxy (NTLM, Password Vaulting)
ID Plus E3IncludedIncludedIncludedIncludedIncludedIncludedIncluded
ID Plus E2IncludedIncludedIncludedIncludedIncludedOptional 
ID Plus E1 SAML-based only  Included  

Integrations with cloud-based and on-premises directories, including Active Directory, Azure AD, LDAPv3.

Authentication Methods

The ID Plus E1, E2 and E3 licenses include the following authentication methods:

  • Approve (Push) notification through the RSA Authenticator app and wearable devices

  • One-Time Passcode (OTP) delivered on-demand through the RSA Authenticator app

  • Integrated SMS OTP and Voice OTP available as an add-on

  • Passwordless authentication through FIDO2 and Device Biometrics, such as Apple FaceID, Android biometrics and Windows Hello

  • Secure One-Time Passcodes using RSA hardware and software OTP Credentials

  • Emergency Access Code

  • (ID Plus E2 and ID Plus E3 only) Customized authentication through the Mobile SDK

ID Plus E2 and E3 include an on-premises and cloud authentication components. The on-premises component of the RSA cloud services provides failover and ensures high availability, including offline authentication. This deployment is included in the ID Plus E2 and ID Plus E3 license.

Hardware credentials are sold separately.

Access Policy Attributes

The cloud service included with ID Plus allows you to use specific attributes in access policy conditional expressions. These expressions are used to determine authentication requirements and who is allowed or denied access to resources. The following table shows which attributes are available with each license.

Access Policy AttributesID Plus E1ID Plus E2ID Plus E3
Identity source attributes (used in rule sets to select target population for policy)xxx
IP address (conditional attribute)xxx

Additional conditional attributes:

  • Authentication Type

  • Authentication Source

  • Country

  • Known Browser

  • Trusted Location

  • Trusted Network

  • User Agent (Device)

 xx

Additional conditional attributes:

  • High-Risk User List

  • Identity Confidence

  x

RSA® Risk AI: Leveraging machine learning, anomaly detection and real-time risk scoring to ensure identity confidence to minimize interrupting end users

 Optionalx
Mobile Lock OptionalOptional

Note:  If your deployment is downgraded from ID Plus E3 to ID Plus E2, you must examine your access policies and edit them if necessary to ensure that they comply with the ID Plus E2 license. Policies that are not up-to-date can result in authentication failures.

Don't see what you're looking for?