Unrestricted agents pass all user authentication requests to RSA Authentication Manager. Restricted agents only pass requests from users that belong to user groups that have been given access to the agent. You configure access restriction in Authentication Manager.
In the Security Console, click Access > Authentication Agents > Manage Existing.
Click the Restricted or Unrestricted tab, depending on whether the agent that you want to search for is restricted or unrestricted.
Use the search fields to find the agent that you want to configure.
Click the agent that you want to configure, and click Edit.
If you want the agent to be restricted and allow access only to users who belong to user groups with access to the agent, click Allow access only to members of user groups who are granted access to this agent.