Updating RSA SecurID Access SSL portal certificate can break Authenticate App tokencode - Authentication Manager integration
Originally Published: 2017-07-24
Article Number
Applies To
Issue
When attempting authentication, the Authentication Manager Authentication Activity Monitor shows:
RSA SecurID Access Authenticator Tokencode verification failed for user "<username>" Unexpected return code or unexpected exception occurred.
Cause
The Authenticate App<->Authentication Manager agent integration (both trusted realm for SecurID Access-only users and the Authenticate App integration for Authentication Manager users) depends on the Authentication Manager trusting the IDR root certificate. Changing the IDR root certificate will break either type of existing IDR<->Authentication Manager trust relationship.
Resolution
- If using a trusted realm for Authenticate App integration (SecurID Access-only users), delete the existing trusted realm in the Security Console and then re-run the manage-securid-access-trusts command line utility per Add an SecurID Deployment to RSA Authentication Manager as a Trusted Realm.
- If Authentication Manager users are using the Authenticate App to authenticate through SecurID Agents then load the IDR's new root certificate per step 6 of Configure RSA Authentication Manager to Handle Authenticate Tokencodes.
Notes
Related Articles
Registration Manager Jurisdictions are not updated with changes made at the Certificate Manager 8Number of Views Issue with customizing session timeout 58Number of Views Does CRL gets updated when certificates are deleted from KCA database? 9Number of Views Issue with RRM after renewing ssl server certificates 17Number of Views Unable to renew system SSL certificates on Registration Manager 6.6.1 20Number of Views
Trending Articles
RSA Release Notes for RSA Authentication Manager 8.8 RSA Authentication Manager 8.9 Release Notes (January 2026) When running "acm startdb" or "service aveksa_server startdb" for RSA Via Lifecycle & Governance the error "PRCD-1027 : Fa… RSA Authentication Manager 8.9 Patches and Hotfixes Readme RSA Authentication Manager Upgrade Process
Don't see what you're looking for?