This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements

SecurID® Discussions

Browse the SecurID discussion board to get product help and collaborate with other SecurID users.
niker
New Contributor
New Contributor
‎2023-04-03 03:57 AM

Test secureID is working

Hello guys,

Im looking for a solution to monitor that, our RSA appliances working, and doing their job!? I want to try to connect in every our to a server with SecureID (sure automatical) , and somehow send this to our zabbix service. 

I know yet, if the appliance is unreacheable, but i need to know, the authentication with 2 factor is working properly! 

 

Do you have any ide, how can i do this? Or any other idea how can i monitoring the RSA appliance's job? 

Thanks,

David

0 Likes
Reply
2 Replies
EricaChalfin
Moderator Moderator
Moderator
‎2023-04-04 12:23 PM

@niker,

Zabbix is not supported if it is installed on an Authentication Manager server. That said, we can monitor the Authentication Manager server by sending logs to any syslog or SNMP server. See our article on how to configure the remote syslog host for real time log monitoring.

Also helpful will be our article on how to configure Authentication Manager to send syslogs to multiple remote servers.

 


Best regards,
Erica
0 Likes
Reply
SeanDoyle
Trusted Contributor Trusted Contributor
Trusted Contributor
‎2023-04-04 01:00 PM

Several ways to monitor the service.. first is SNMP and Zabbix has examples where you could get it to do SNMP polling for status.

Another, kludgier but effective method is to use a RADIUS auth with no passcode in the body.. the RADIUS server will process the request and then return an access denied but it will process the request and it won't generate any extraneous logging in the normal auth logs. This can be used by load balancers and system monitors and Zabbix can use an external script to perform just such a check. No response, means service is unavailable. Extended response more than a few seconds likely means something is amis.. Access-Reject quickly indicates the system is likely working. 

A well-rounded monitoring plan should leverage snmp polling for key indicators and optionally tracking them over time to build normal baselines, SNMP traps for serious issues such as replication failures, server shutdowns (well ordered), external identity source issues, etc., and some kind of authentication test like the RADIUS test trick described above. 

 

0 Likes
Reply
© 2023 RSA Security LLC or its affiliates. All rights reserved.