Setting Up an Application Trust
The RSA Authentication Manager API provides you with the means to create custom applications that can extend AM to fit your particular needs. To use your custom application, you must create a connection to AM using two-way SSL with application trust. This enables custom applications to perform administrative tasks securely on AM under the chosen administrator's identity.
You perform the following tasks to configure two-way SSL with application trust.
Procedure
Create a new administrative role with the permissions required for the custom application. For instructions, see “Create an Application Trust Administrative Role” in “Configuring Two-Way SSL with Application Trust” in the Developer’s Guide.
Create a new user in a security domain that is not in the scope defined for the administrative role. For instructions, see “Add a New User for Application Trust” in “Configuring Two-Way SSL with Application Trust” in the Developer’s Guide.
Assign the new administrative role to the new user. For instructions, see “Assign an Administrative Role for Application Trust” in “Configuring Two-Way SSL with Application Trust” in the Developer’s Guide.
Generate keys and a certificate signing request for a certificate designated for client authentication using a certificate management utility of your choice. For instructions, see “Create the Application Trust” in “Configuring Two-Way SSL with Application Trust” in the Developer’s Guide.
In the Operations Console, upload the certificate signing request. For instructions, see Add a New Application Trust Certificate.
In the Operations Console, download the signed application trust certificate and the root CA certificate. For instructions, see Download an Application Trust Certificate.
Using the certificate management utility of your choice, import the root CA certificate first and then the signed certificate into the keystore specified in the creation of the certificate signing request. For instructions, see “Create the Application Trust” in “Configuring Two-Way SSL with Application Trust” in the Developer’s Guide.
Related Articles
How to ensure Agent Hosts for RADIUS clients are not required when setting up RSA RADIUS / RSA Authentication Manager 6.1 Number of Views Quick Setup hangs forever at setting up operating system for RSA Authentication Manager 8.x Number of Views Node secret issues after setting up RSA SecurID Authentication Agent 8.0 for Web for Internet Information Services (IIS) Number of Views Setting up the RSA Authentication Agent API 8.5 on a Linux operating system Number of Views How to set up the REST RSA SecurID Authentication API for Authentication Manager 8.2 SP1 Number of Views
Trending Articles
RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide RSA Authentication Manager 8.9 Release Notes (January 2026) How to install the jTDS JDBC driver on WildFly for use with Data Collections in RSA Identity Governance & Lifecycle RSA Authentication Manager 8.8 Setup and Configuration Guide Artifacts to gather in RSA Identity Governance & Lifecycle
