This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements

RSA® Authentication Manager Documentation

Browse the official RSA Authentication Manager documentation for helpful tutorials, step-by-step instructions, and other valuable resources.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Versions
Collections
All Downloads

Table of Contents

Product Resources

Synchronize Agent Authentication Records on the Primary Instance

You can configure the number of agents that can be queued for auto-registration. Consider using this feature to increase the queue size if you need to auto-register a large number of agents (more than 1000) simultaneously.

The RSA Authentication Manager primary instance checks log records at regular intervals for new authentication records and information on the authentication agents that are installed in your deployment. You can use these collected records to run the List All Installed Agents report. Authentication Manager looks for timestamps that are later than the last time that it checked the log files, unless you define an offset value to collect earlier records that were delayed by replication. By default, the offset value is 0 hours.

For example, suppose that a replica instance authenticates a user at 10:59 AM. The primary instance checks the log files for authentication records at 11:00 AM, and the replica instance sends data to the primary instance at 11:10 AM. When the primary instance checks the log files again, at 11:00 PM, it looks for authentication records with a timestamp that is 11:00 AM or later. If you set the offset value to 1 hour, then the primary instance looks for records with timestamps that are later than 10:00 AM, and it collects the replicated authentication record from 10:59 AM.

Before you begin 

  • You must be an Operations Console administrator.
  • Obtain the rsaadmin operating system password for the primary instance.
  • Secure shell (SSH) must be enabled on the primary instance. For instructions, see Enable Secure Shell on the Appliance.

Procedure 

  1. On the primary instance, log on to the appliance using an SSH client.

  2. Change directories:

    cd /opt/rsa/am/utils

  3. Type the following command, and press ENTER:

    ./rsautil store -o admin -p password$ -a update_config ims.agent.monitor.offset time GLOBAL 503

    Where:

    admin is the Operations Console administrator user name.

    password is the Operations Console administrator password. For security reasons, instead of entering your password on the command line, you can wait for the utility prompt you for it.

    time is the offset in hours to check for new agent authentication records that were synchronized after the last time that Authentication Manager checked log files. For example, 1 hour.

    You do not need to restart the server.

 

 

Related Tasks

Configure RSA Authentication Manager Monitoring Intervals for Installed Agents

 

 

 

You are here
Table of Contents > Reports > Collecting Replicated Agent Authentication Records on the Primary Instance
Labels (2)
0 Likes
Was this article helpful? Yes No
No ratings
© 2023 RSA Security LLC or its affiliates. All rights reserved.