Connect Your Cloud Authentication Service Deployment to Authentication ManagerConnect Your Cloud Authentication Service Deployment to Authentication Manager
You can perform two types of integration with RSA Authentication Manager.
| Integration Type | Performed From |
|---|---|
| Connect the Cloud Authentication Service to Authentication Manager | Cloud Administration Console |
| Connect Authentication Manager to the Cloud Authentication Service | The Security Console in Authentication Manager. Requires Authentication Manager version 8.4 Patch 4 or later. |
Note: To enable the High Availability Tokencode feature, see Enable High Availability Tokencode in the Cloud Authentication Service.
Connect the Cloud Authentication Service to Authentication ManagerConnect the Cloud Authentication Service to Authentication Manager
You can connect the Cloud Authentication Service to Authentication Manager to allow users with SecurID tokens to access SaaS and on-premises web applications and RADIUS clients protected by the Cloud Authentication Service. For configuration instructions, see Enable SecurID Token Users to Access Resources Protected by the Cloud Authentication Service. Use the Platform > Authentication Manager page to test the connection.
Connect Authentication Manager to the Cloud Authentication ServiceConnect Authentication Manager to the Cloud Authentication Service
After you connect Authentication Manager to the Cloud Authentication Service, Authentication Manager users can access agent-protected resources using the SecurID Authenticate app on registered devices. You must select an access policy and generate the Registration Code. You will need the information generated on this page to configure the connection from the Security Console in Authentication Manager version 8.4 Patch 4 or later.
Before you begin
-
You must be a Super Admin for the Cloud Authentication Service.
-
Decide which access policy will be applied to all users who access these resources. The policy must contain at least one cloud authentication method that Authentication Manager supports. If you decide to rename this policy or select a different policy at a later date, you must regenerate the Registration Code and perform the connection steps again in the Security Console. You can edit settings within the policy at any time without reconnecting.
Procedure
-
In the Cloud Administration Console, click Platform > Authentication Manager.
-
Select an access policy.
-
Click Generate Code to generate a code and a registration URL. This code is valid for 24 hours.
After you finish
Copy the Registration Code and Registration URL and return to the Security Console. Either continue deploying the embedded identity router as described in Quick Setup - Connect SecurID Authentication Manager to the Cloud Authentication Service with an Embedded Identity Router or complete the wizard as described in Connect SecurID Authentication Manager to the Cloud Authentication Service.
