RSA Authentication Agent 7.1 for PAM for AIX acetest program fails to authenticate a username
Originally Published: 2016-10-24
Article Number
Applies To
RSA Product/Service Type: Authentication Agent for PAM
RSA Version/Condition: 7.1
Issue
Unexpected error from ACE/Agent API
The real-time authentication activity monitor reports the following error when authentications are sent to an Authentication Manager server:
Node secret mismatch: cleared on agent but not on server
Cause
Resolution
NOTE: The default location of the SecurID configuration files used by the PAM agent is /var/ace, but this can be changed by editing the /etc/sd_pam.conf file.
For information on the usage of ns_conv_util, please refer to pages 18 and 19 of the RSA Authentication Agent 7.1 for PAM Installation and Configuration Guide for AIX.
Notes
- The sdconf.rec (configuration record generated from the Security Console),
- The securid (node secret) normally created during the first authentication attempt from the agent to the Authentication Manager server(s),
- The sdstatus.12 created by the PAM agent that lists servers in the deplyment and which are responding fastest, and
- The sdopts.rec which allows for an IP address to be specified that is used to communicate with the Authentication Manager deployment server(s).
Related Articles
RSA Authentication Manager 6.1.2 Database Dump Program Fails in a UNIX Environment Number of Views RSA MFA Agent 9.0 for PAM - Installation and Configuration Guide for AIX (German) Number of Views PAM Agent Solaris 10 sshd allows SecurID challenged user with blank Unix password access without challenge Number of Views Configuring an RSA Data Loss Prevention Network Internet Content Adaptation Protocol (ICAP) server and Exchange to monitor… Number of Views Failed to connect. Curl error code: 77 when using the RSA MFA Agent 9.0 for PAM via REST Protocol Number of Views
Trending Articles
RSA Authentication Manager Upgrade Process RSA Release Notes for RSA Authentication Manager 8.8 RSA RADIUS Server service failed to start in the RSA Authentication Manager 8.1 Operations Console Microsoft Entra ID External MFA - Relying Party Configuration Using OIDC - RSA Ready Implementation Guide RSA Release Notes: Cloud Access Service and RSA Authenticators
Don't see what you're looking for?
