Run as Different User option generated a node secret mismatch with RSA Authentication Agent 7.2.1

3 years ago

Originally Published: 2012-12-11

Article Number

000045137

Applies To

RSA Product Set: SecurID
RSA Product/Service Type: RSA Authentication Agent
RSA Version/Condition: 7.2.1
Platform: Windows

Issue

The RSA Authentication Manager real-time authentication activity monitor reports the following error after using the Run as different user option on Microsoft Windows 2012 R2 where RSA Authentication Agent 7.2.1 for Windows is installed and configured:

Node secret mismatch: cleared on agent but not on server

Cause

The permissions on the node secret file named securid are not available to the user whose credentials have been entered when running the Run as different user feature on WIndows (Ctrl + Shift + right-click executable).

Resolution

RSA Authentication Agent for Windows 7.2.1 for Windows stores its configuration files in the C:\Program Files\Common Files\RSA Shared\Auth Data folder by default.

The Windows administrator could deactivate User Access Control (UAC) to resolve access issues to the node secret file and Microsoft has provided information on this. Please visit Windows Server 2012: Deactivating UAC for more information on deactivating the UAC.

Where UAC is required, the administrator would change the permissions on the node secret file to use read access for authenticated users.

Notes

Here is an example of the securid Properties - Security tab where the RSA Authentication Agent 7.2.1 for Windows was installed on a standalone Microsoft Windows 2012 R2 server.

User-added image

Don't see what you're looking for?

Potential Impact from Salesforce Device Activation Change

Related Articles

Trending Articles