RSA SecureID Access Question1
1. We have an in house developed custom application which we want to authenticate using MFA authentication. This in-house application is running on our local VMWare cloud Server. We want to use RSA SecureID Manager and Agent to do multi-factor Authentication (MFA) for this application.
2. We don’t want to develop our own custom agent to work with your RSA SecureID manager.
3. We have on-premises SharePoint 2016. Can we use this SharePoint 2016 to MFA authenticate our in-house application. Regular users on SharePoint will not be Authenticated using RSA SecureID. Only users who want to run our custom application will be authenticated using RSA SecureID MFA Authentication.
4. Can we achieve this using I believe your IIS Agent “RSA Authentication Agent 8.0.3 for Web for IIS xx” with SharePoint 2016?
5. Please advice.
- am prime
- Community Thread
- Forum Thread
- Prime Offering
- RSA SecurID
- RSA SecurID Access
- RSA SecurID Access Prime
- SecurID Access Prime
Hi Tom - in your description you say you do not want to protect general SharePoint users with MFA so RSA's various ways of protecting SharePoint sound like they would not apply.
Given your no-custom-agent-development statement you are left with the RSA SecurID Access Cloud Authentication Service's ability to protect web applications using SAML (preferred if the application supports it), HTTP Federation, or Trusted Headers.
Hope that is helpful,
Is it possible to create a separate SharePoint Web Application (WA2) where we enable RSA SecureID Access to access some URL link on that Web Application (WA2). It does MFA with pin code from the hand held and then it allows to access to that URL. Our regular users access some other Web Application (WA1) and corresponding sites on that web application (WA1). This web Application (WA1) does not have RSA SecureID Access authentication. It has traditional username/password authentication. I will request answer from somebody who is familiar with SharePoint. SharePoint has special meaning of Web Application. Or may be can we isolate this functionality at Site Collection level? Thanks, Tom Chaudhry.