Test secureID is working
Im looking for a solution to monitor that, our RSA appliances working, and doing their job!? I want to try to connect in every our to a server with SecureID (sure automatical) , and somehow send this to our zabbix service.
I know yet, if the appliance is unreacheable, but i need to know, the authentication with 2 factor is working properly!
Do you have any ide, how can i do this? Or any other idea how can i monitoring the RSA appliance's job?
Zabbix is not supported if it is installed on an Authentication Manager server. That said, we can monitor the Authentication Manager server by sending logs to any syslog or SNMP server. See our article on how to configure the remote syslog host for real time log monitoring.
Also helpful will be our article on how to configure Authentication Manager to send syslogs to multiple remote servers.
Several ways to monitor the service.. first is SNMP and Zabbix has examples where you could get it to do SNMP polling for status.
Another, kludgier but effective method is to use a RADIUS auth with no passcode in the body.. the RADIUS server will process the request and then return an access denied but it will process the request and it won't generate any extraneous logging in the normal auth logs. This can be used by load balancers and system monitors and Zabbix can use an external script to perform just such a check. No response, means service is unavailable. Extended response more than a few seconds likely means something is amis.. Access-Reject quickly indicates the system is likely working.
A well-rounded monitoring plan should leverage snmp polling for key indicators and optionally tracking them over time to build normal baselines, SNMP traps for serious issues such as replication failures, server shutdowns (well ordered), external identity source issues, etc., and some kind of authentication test like the RADIUS test trick described above.