This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements

SecurID® Discussions

Browse the SecurID discussion board to get product help and collaborate with other SecurID users.
ghafoorkc
Beginner
Beginner
‎2019-12-23 05:31 AM

restricted agent

Hi,

How to create restricted agent and unrestricted agent . 

Labels (1)
0 Likes
Reply
2 Replies
_EricaChalfin
Employee (Retired) Employee (Retired)
Employee (Retired)
‎2019-12-23 02:26 PM

ghafoor kc‌,

 

To create the agent, follow the steps in the Installation and Administration Guide for your agent.

 

Setting the agent as either restricted or unrestricted happens when you add the agent to the deployment through the Security Console. 

 

  1. First add the agent to the deployment as a restricted agent (Access > Authentication Agents > Add New).  
  2. Next, generate and download the configuration files (Access > Authentication Agents > Generate Configuration File > Generate Config File > Download Now).
  3. Copy the AM_Config.zip, containing the sdconf.rec file and the failover.dat file, to each agent you are configuring.
  4. Setup user groups (Identity > User Groups > Add New).
  5. Allow user group access to the new restricted agent.  Open the restricted agent (Access > Authentication Agents > Manage Existing) Select the agents(s) to which you want to grant access.
  6. Select Grant Access to User Groups and click Go.
  7. Use the search options to select the usr group(s) to which you want to grant access.

 

You can learn about creating restricted and unrestricted agents through the online help in the RSA Authentication Manager Security Console.  Search for Configuring a Restricted Agent to Control User Access for more information.

 

Regards,

Erica

Reply
SrirangaPrasan1
Employee
Employee
‎2019-12-25 05:32 AM

By default all agents created at first are unrestricted agents.

 

Once we decide to configure more refined or locked down access to a particular Agent based on user groups, that is when the agent becomes a restricted agent by granting access to user Groups from security console.

The user groups can be - the groups created from within the security console which are locally stored in the internal database (or) the groups that are referenced from an external Identity source such as Microsoft Active Directory whose DN is defined while the Identity source is created from the operations console (Group Base DN)

 

pastedImage_1.png

0 Likes
Reply
© 2023 RSA Security LLC or its affiliates. All rights reserved.