Network Admins,
You are going to need three things:
1. Depending on the operating system of the machine(s) you wish to protect, you would need to download the correct RSA Authentication Agent. Be sure to download the documentation as well since it covers how to install the agent on the machine, configure challenge settings and work with Group Policy Objects.
Do not enable challenge on your machine until you have thoroughly tested communication between the agent machine and the Authentication Manager server. Failure to properly test can result in being locked out of the machine.
2. In order for the Authentication Manager server to properly process the authentication requests from the agent, you need to create an agent record on the server. This agent record needs to have the FQDN and IP of the agent machine in order to accept or deny the authentication request.
3. You will need hardware or software tokens. Tokens are ordered either through your RSA account rep or your reseller. Once you receive the token seed media, it is loaded into the Authentication Manager server via the Security Console. Once the tokens are imported they are then assigned to a user. Hardware tokens are delivered to users via snail mail. Software tokens can be sent via email, a CT-KIP URL or QR code. Before receiving the software token, the end user downloads and installs the RSA SecurID Token Authenticator on their device or desktop. Once the end user gets the token that was assigned, they can test authentication from their agent to the server.
Regards,
Erica
