Why use RSA SecurID Access AD FS SAML integration rather than the RSA Authentication Agent for Microsoft AD FS
Originally Published: 2018-11-06
Article Number
Applies To
Issue
- RSA Authentication Agent for Active Directory Federation Services (AD FS)
- SAML integration with the RSA Cloud Authentication Service
Resolution
However, there are some situations where SAML integration may be the better choice:
- Require SecurID as the primary authentication method and AD FS is running on Windows Server 2012 or 2016 (the agent can only provide additional/secondary authentication unless AD FS is running on Windows Server 2019 or later).
- Require FIDO token authentication (FIDO is not supported by the agent).
- Prefer not to install and maintain additional software on your AD FS server(s). The agent must be installed on each AD FS server in your server farm.
Related Articles
Troubleshooting RSA MFA Agent for Microsoft AD FS Number of Views How to selectively challenge users and applications with RSA AD FS agent 1.x Number of Views The Active Directory Account Collector does not collect the AD Domain Users Group in RSA Identity Governance & Lifecycle Number of Views How to verify that RSA Authentication Agent for Windows can perform challenge user lookups across different Active Directo… Number of Views RSA MFA Agent 3.0 for Microsoft AD FS Administrator's Guide Number of Views
Trending Articles
Quick Setup Guide - Passwordless Authentication in Windows MFA Agent for Active Directory RSA Authentication Manager 8.9 Release Notes (January 2026) Artifacts to gather in RSA Identity Governance & Lifecycle RSA Governance & Lifecycle 8.0.0 Administrators Guide RSA Governance & Lifecycle 8.0.0 Installation Guide
Don't see what you're looking for?
