JamesLillard10655 (Customer) asked a question.
If I need to use different ports for my servers other than 5500, 5550, and 5580 I understand I need to generate a sdconf.rec file. Once this file is generated, on my Windows clients would I need to put this file so the MFA Agent can find the servers?
@JamesLillard10655 (Customer)
The older agents like Authentication Agent 7.4.7 for Windows or Authentication Agent 8.1.3 for PAM know the Authentication Manager servers to use for authentication because the sdconf.rec contains the IP addresses and aliases for the primary and replica Authentication Manager servers.
The MFA agents do not use the sdconf.rec (or node secrets). Rather, the agent connects to Authentication Manager or Cloud Authentication Service using the REST API and API keys. Server connection details (such as REST API URL and API Key) are configured via Group Policy Objects (GPOs) or local settings. The RSA MFA Agent 2.4.3 for Microsoft Windows Group Policy Object Template Guide has more information.