Cloud Authentication Service Updates
The following subsections outline the new and enhanced features of the Cloud Authentication Service (CAS).
My Page Recovery Policy Is Now Available in the Cloud Administration Console
Users can now report issues with their registered authenticators, such as damage, loss, theft, or other issues. To facilitate this, the My Page Recovery Policy is now available, allowing administrators to control who can recover access to My Page in these circumstances. Administrators can go to Access > My Page and enable the Recovery Settings under the Enrollment and Recovery tab to activate a URL that allows users to recover their accounts if their authenticator is lost, stolen, damaged, or in other circumstances.
Note: The recovery feature is available only for users with one registered Cloud Authentication Service authenticator, providing an additional layer of security for account management.
Important Notice: Use of Company-Specific URLs Required
Administrators need to use their designated company-specific URLs for all access, including API access and SCIM configurations. Access through URLs that are not company-specific or do not include a company subdomain will soon be blocked without redirection, leading to functionality loss. Administrators need to promptly ensure that all connectivity is through company-specific URLs and update their configurations as needed to maintain access.
If a SAML third-party Identity Provider (IdP) is configured for logging into the Cloud Administration Console, administrators need to ensure that the Sign-In URL and the Assertion Consumer Service (ACS) URL are configured with the company-specific URLs on the IdP side. If they are not, please update them as needed. To locate the company-specific Sign-In URL and ACS URL, navigate to My Account > Company Settings > Sessions and Authentications in the Cloud Administration Console.
RSA Authenticator 4.5 for iOS and Android – Coming Soon
RSA Authenticator 4.5 for iOS and Android is scheduled to be released this month. RSA Authenticator 4.5 for iOS and Android is now a FIDO2 certified authenticator, allowing users to register passkeys within the app and use them with any FIDO2 certified services. Like any credentials managed in the RSA Authenticator app, these passkeys cannot be backed up or restored.
Important Notes:
- For this new feature to be available to users, administrators need to enable the use of the RSA Authenticator app as a FIDO Authenticator (from Access > My Page > My Authenticators, under Configuration).
- This new feature requires devices running at least iOS 17 and Android 14. Furthermore, certain device manufacturers may not have enabled the necessary Android modules to support the passkey feature.
Subscribe to status.securid.com for the Cloud Authentication Service Status Updates
For information about all service incidents and scheduled maintenance windows for the Cloud Authentication Service, subscribe to https://status.securid.com.
RSA MFA Agent for Microsoft Windows Updates
Microsoft Entra ID Support for the RSA MFA Agent
The RSA MFA Agent 2.3.4 now supports both Entra ID and Hybrid Joined machines. Version 2.3.4 also includes all of the enhancements and issue fixes from all prior versions.
Secondary Groups
From RSA MFA Agent 2.3.4, you can specify an optional secondary group for the “Challenge Users” group policy. You can use this policy to include groups from a separate Active Directory forest. For more information, see the RSA MFA Agent 2.3.4 for Microsoft Windows Release Notes.
Upcoming End of Primary Support (EOPS) Details
The following table provides details of the RSA products reaching the end of support within the next six months:
| Product | Version | EOPS Date | Extended Support Level 1/Level 2 |
|---|---|---|---|
| Authenticator for Windows | 6.1.3 | February 2025 | No |
| 6.1.2 | November 2024 | No | |
| Authentication Agent for PAM | 8.1.x | November 2024 | No |
| Authentication Agent for Citrix StoreFront | 2.0x | December 2024 | No |
Third-Party Integrations from RSA Ready
The following integrations were recently completed or certified by RSA through the RSA Ready Technology Partner Program. For the complete catalog of Implementation Guides, see RSA Ready Integrations on the RSA Community.
New Integrations for the Cloud Authentication Service
- Atlassian Confluence
- Automox
- AWS IAM
- Cloudflare
- Gremlin
- Idera Team Server
- IronWiFi
- OPSWAT MetaDefender IT Access
- Qualys Enterprise TruRisk
- Vasion
- Watchguard
New Integrations for Authentication Manager
- Canon
- Dell PowerStore
Updated Integrations for the Cloud Authentication Service
- Coralogix
- PingOne
- Salesforce Experience Cloud
- Silverfort
Related Articles
RSA MFA Agent 9.0 for PAM - Installation and Configuration Guide for Oracle and RHEL (Chinese) Number of Views RSA Announces the Release of RSA MFA Agent 9.0 for Apache Number of Views RSA June 2024 Release Announcements Number of Views RSA MFA Agent 9.0.1 for PAM - Installation and Configuration Guide for AIX Number of Views RSA SecurID Authentication Agent 8.1 for PAM Installation and Configuration Guide for Oracle and RHEL (Chinese) Number of Views
Trending Articles
RSA Authentication Manager Upgrade Process RSA Release Notes for RSA Authentication Manager 8.8 RSA RADIUS Server service failed to start in the RSA Authentication Manager 8.1 Operations Console Microsoft Entra ID External MFA - Relying Party Configuration Using OIDC - RSA Ready Implementation Guide RSA Release Notes: Cloud Access Service and RSA Authenticators
