error importing software token in IOS RSA app
Since the last update of the RSA softtoken app for IOS,(version 2.2) the users can't import a new token.
They receive the following error Token import failed. Error communicating with server. Contact your administrator
On the server side, firewalls etc nothing has changed and importing of tokens in android or windows is flawless.
on the firewall we don't see any drops and I have made a quick capture and can't see any network traffic
I am running 3.0 appliances with authentication manager 8.1. sp1 p12
For the software token profile we are using device type iphone 1.3 and the tokens are distributed with CTKIP
In our testing environment I have tried device type IOS 2.x but no success
I have reported this issue with our supplier but any suggestions or tips are welcome
- app transport security
- Auth Manager
- Authentication Manager
- Community Thread
- dynamic seed provisioning
- error communicating with server
- Forum Thread
- ios 2.2
- RSA SecurID
- RSA SecurID Access
- rsa securid software token for ios
- sha-256 certificates
- tls 1.2
- Token Auth
- Token Authentication
- Token Authenticator
- Token Authenticators
- token import
- token import failed
Hi Andre: The issue centers on new requirement from Apple. Certificates need to be upgraded on the Authentication Manager.
when looking at the link you provided, it seems configuration option 3 is applicable for us.
however the difference is that we using ctkip with the primairy appliance which is fronted by a Microsoft TMG which function as a loadbalancer..
I have checked the certificate on the loadbalancer and it seems to me that the certificate and protocols meet to all the requirements of apple
according to ssllabs
RSA 2048 bits (e 65537) / SHA256withRSA
hope to hear from you soon
We are updating the KB. We have heard that some older loadbalancer's that can take a SHA-256 certificate, cannot successfully negotiate the required Apple ciphersuites. Take a look at this utility https://www.ssllabs.com/ssltest/index.html
There's a very popular loadbalancer out their that shows the following error:
Server sent fatal alert: handshake_failure
The fix for it is to upgrade the version of the loadbalancer.
I am using ssllabs a lot
can you clarify which loadbalancer shows that error?
because I see the error message when using ssllabs
if you don't want to put in on the board you can email me at firstname.lastname@example.org
by the way I my supplier told me there will be a new app available soon, can you confirm that?
it should fix the errors