Cloud Authentication Service User System RequirementsCloud Authentication Service User System Requirements
The Cloud Authentication Service can prompt users for authentication through RADIUS clients, a browser to access web applications, or the RSA Authenticator app. Your users must meet the following requirements in order to authenticate.
-
Connectivity Requirements for RSA Authenticator App Registration to the Cloud Authentication Service
Note: RSA does not support using the RSA Authenticator app on a rooted Android device or a jailbroken iOS device. Do not allow such a device in your deployment.
Supported LanguagesSupported Languages
The Cloud Authentication Service can prompt users for authentication in the browser or in the RSA Authenticator app in the following languages:
-
English
-
Chinese
-
French
-
German
-
Japanese
-
Portuguese
-
Spanish
The RSA Authenticator app is also available in Italian and Korean.
Browser RequirementsBrowser Requirements
| Browser | Minimum Required Version |
|---|---|
|
Microsoft Edge Chrome (PC or desktop, Android) Firefox Safari (Mac, iOS) |
Latest |
Note: Microsoft Edge Legacy and Internet Explorer 11 are not supported.
RSA Authenticator App Device RequirementsRSA Authenticator App Device Requirements
Connectivity Requirements for RSA Authenticator App Registration to the Cloud Authentication ServiceConnectivity Requirements for RSA Authenticator App Registration to the Cloud Authentication Service
At registration time, the device where the RSA Authenticator app is installed must be able to access the URLs listed in this section. These URLs are necessary to register the app to the Cloud Authentication Service. If users' devices may be connected to your organization's network at the time of registration, ensure that your organization's firewalls allow end user devices to access these URLs.
For FedRAMP customers:
-
Allow DNS TXT query: homing.securidgov.com. The primary and secondary homing service URLs that may be returned, are currently:
-
*.entrust.net
-
ctldl.windowsupdate.com (Windows devices only)
For non-FedRAMP customers:
-
Allow DNS TXT query: homing.securid.com. The primary and secondary homing service URLs that may be returned, are currently:
https://homingprodarmuseast.blob.core.windows.net
https://homingprodarmuswest.blob.core.windows.net
-
*.entrust.net
-
ctldl.windowsupdate.com (Windows devices only)
App Store Download RequirementsApp Store Download Requirements
To download the RSA Authenticator app from an app store, the user's device must meet the following requirements:
| Device | Minimum Operating System Version |
|---|---|
| Android | 7.0 |
| iOS | 11.0 |
Minimum Supported OS and App VersionsMinimum Supported OS and App Versions
RSA updates the RSA Authenticator app on a regular basis. We recommend that users always update to the latest version of the app. However, if users are unable to, the following table lists the supported minimum requirements for the device where the app is installed.
| Device | Minimum Required Operating System Version | Minimum Required App Version |
|---|---|---|
| Android | 7.0 | 2.3 |
| iOS | 11.0 | 2.2 |
FIDO Authenticator RequirementsFIDO Authenticator Requirements
The FIDO authenticator can be used for primary authentication or for additional authentication. The system requirements vary based on the authentication type. Authenticators used for primary authentication also work for additional authentication.
System Requirements for FIDO Primary AuthenticationSystem Requirements for FIDO Primary Authentication
| Authenticator | Device with Minimum Operating System Version | Minimum Device Browser Version |
|---|---|---|
|
FIDO2-certified security key, for example, a USB, BLE, or NFC security key. The security key must support multifactor authentication, such as a PIN or biometric. Before using the security key to authenticate, the user must set up user verification on the key using security key management software. For example, you can deploy RSA Security Key Utility. See Using RSA Security Key Utility. |
|
Chrome 76 Version 79 or higher provides a better user experience. |
|
Windows 10 Version 1903 This version supports setting up security key multifactor authentication when authenticating. |
|
|
| Windows Hello | Windows 10 Version 1909 with Windows Hello enabled |
|
| Android phone | Android 7.0 or higher | Chrome 79 |
System Requirements for FIDO Additional AuthenticationSystem Requirements for FIDO Additional Authentication
| Authenticator | Browser | Minimum Required Version |
|---|---|---|
|
One of the following:
|
Microsoft Edge |
44.17763.1.0 |
| Chrome |
PC or desktop: 67 Android: 70 |
|
| Firefox |
PC or desktop: 60 Android: 63 |
Note: FIDO authentication might not work on browsers that run on a virtual machine.
Authentication Method RequirementsAuthentication Method Requirements
-
Device Biometrics requires an iOS device that supports Touch ID or Face ID, a Samsung or Android version 6.0 device with a fingerprint sensor, or a Windows device with Windows Hello enabled.
-
SMS OTP requires a phone that can receive SMS messages.
-
Voice OTP requires a phone that can receive voice calls.
