Host prompting for admin user credentials when logging on from 3rd party tool
We have Installed RSA Agent 7.2 on Windows 2012, Before RSA agent was installed host auto populated the password for admin account and our technical team would auto logon without prompting for password.
However, after RSA agent was installed we lost this functionality and the host/admin account is prompting for password. This is an issue because we dont share password with everyone due to security concern
Note - We use Blade jump / Password Manager to access the server/host remotely
Appreciate your help
- Auth Agent
- Authentication Agent
- auto logon
- Community Thread
- Forum Thread
- rsa authentication agent 7.2
- RSA SecurID
- RSA SecurID Access
- windows 2012
- windows password integration
RSA Windows Agents have the capability to do windows password integration:
On first logon of [username], the RSA agent can capture the windows password, and
store it on the RSA server next to the [username].
Next time [username] logs into windows, they use the token, but the windows password is fetched
from the RSA server and replayed to Microsoft in the background. So, if this is set up correctly, you might
be able to use windows password integration and it will avoid anyone needing the password, except for that first
time of storing it (or changing it). If Microsoft doesn't like the password, or it is due to change, then the
agent allows the popups to change or retype password...etc.
If you use RDP to go to another 'Windows machine with an RSA agent on it', there may be no way to avoid
that initial RDP password you need to type before the connection reaches the server with the RSA agent
Now, will this work with your setup ? I am not sure, but you may be able to make use of the windows
password integration mechanism. All Windows agents attempt to perform this, and whether it goes on or not,
is handled per user, and polices applied to users based on security domain...
on the RSA Authentication Manager config...it is offline polices on the RSA server which allow or disallow it from working.
To be more brief
- I log on to jump server
- From blade jump/password manager I connect to the host
- host will allow me to log on without prompting for password (assuming i have access/privilege to login as admin account)
However, after installing RSA agent @ Step 3 host prompts me to Enter the password, if i disable RSA then it allows me directly access the server