This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements

SecurID® Discussions

Browse the SecurID discussion board to get product help and collaborate with other SecurID users.
SumitKumar4
Beginner
Beginner
‎2019-12-12 05:23 AM

Recent Authentication Activity

Hello Team,

 

token authentication is happening fine and for some authentications ,in the activity details i can see the node IP of replica.

does it mean replica performed the token authentication for that transaction?

because as per documents i read that replica is read only instance.

 

Please confirm.

 

Thanks,

Sumit

Labels (1)
0 Likes
Reply
4 Replies
SrirangaPrasan1
Employee
Employee
‎2019-12-12 05:28 AM

Yes, the authentication was addressed by the replica.

Replica is read only for any administrative activities.

Reply
SumitKumar4
Beginner
Beginner
In response to SrirangaPrasan1
‎2019-12-12 05:31 AM

Okay,

administrative activities like token assign, admin role assign etc will only be done by Primary?

0 Likes
Reply
SrirangaPrasan1
Employee
Employee
In response to SumitKumar4
‎2019-12-12 05:54 AM

Yes, that is correct. Replica can do administrative activities if it has been promoted to a primary under the condition if the original primary is unavailable or offline.

Reply
EdwardDavis
Employee
Employee
‎2019-12-12 07:46 AM

Replica is considered read-only for administrative work (adding tokens or managing users) but as it sits there it will authenticate traffic that hits it, the same as a primary. It is read-only in the sense that all changes you make occur on the primary, and the primary copies those changes to the replica database so all systems have identical users and tokens.

 

The replica will log activity it processes, and send the logs to the primary where you can run reports on the events. If you set a replica to send logs to syslog, then the replica will directly send those events to your SIEM tool, as well as send the RSA logs to the primary for the reporting.

Reply
© 2023 RSA Security LLC or its affiliates. All rights reserved.