SecurID® Integrations
Certified: January 18, 2023
Solution Summary
This section describes Endace EndaceProbe with OSm 7.1 and later integration with RSA SecurID (or ID Plus). Use this information to determine which use case and integration type your deployment will employ.
Use Case
EndaceProbe offers 100% network packet recording to solve Cybersecurity, Network and Application issues. EndaceProbe integrates with many tools to provide seamless packet inspection as part of event investigation.
OSm™ (Operating System for Monitoring) is the operating system that powers every EndaceProbe. It provides administration, reporting and configuration via a web-based (GUI) interface and a command-line interface (CLI). Endace Appliance includes EndaceProbe, EndaceCMS, InvestigationManager and EndaceFlow.
EndaceProbe’s OSm integrates with RSA SecurID to provide enterprise class authentication solution.
Integration Types
RSA MFA API (REST) integrations can provide a rich user interface with all RSA SecurID Access features within the partner application. Refer to the Supported Features section in this guide to see which features this partner application has implemented.
Supported Features
This section shows all the supported features by integration type and by RSA SecurID Access component. Use this information to determine which integration type and which RSA SecurID Access component your deployment will use. The next section in this guide contains the instruction steps for how to integrate RSA SecurID Access with EndaceProbe using each integration type.
Endace EndaceProbe with OSm 7.1 and Later Integration with RSA Cloud Authentication Service
|
Authentication Methods |
RSA MFA API (REST) |
RADIUS |
Relying Party |
SSO |
|
RSA SecurID |
- |
- |
- | - |
|
LDAP Password |
- |
- |
- | - |
|
Authenticate Approve |
- |
- |
- | - |
|
Authenticate OTP |
- |
- |
- | - |
|
Device Biometrics |
- |
- |
- | - |
|
SMS OTP |
- |
- |
- | - |
|
Voice OTP |
- |
- |
- | - |
|
FIDO Security Key |
- | - | - | - |
Endace EndaceProbe with OSm 7.1 and Later Integration with RSA Authentication Manager
|
Authentication Methods |
RSA MFA API (REST) |
RADIUS |
Authentication Agent |
|
RSA SecurID |
 |
- |
- |
|
On Demand Authentication |
- |
- |
- |
|
Risk Based Authentication |
- |
- |
- |
|
Supported |
| - | Not supported |
| n/t | Not yet tested or documented, but may be possible. |
| n/a | Not applicable |
Configuration Summary
This section contains instruction steps that show how to integrate Endace EndaceProbe with OSm 7.1 and Later with RSA SecurID using all the integration types.
This document is not intended to suggest optimum installations or configurations. It is assumed that the reader has both working knowledge of all products involved, and the ability to perform the tasks outlined in this section. Administrators should have access to the product documentation for all products to install the required components.
All RSA SecurID and Endace EndaceProbe with OSm components must be installed and working prior to the integration.
All the supported use cases of RSA SecurID Access with Endace EndaceProbe with OSm require both server-side and client-side configuration changes. This section of the guide includes links to the appropriate sections for configuring both sides for each use case.
Integration Configuration
RSA Authentication Manager
Reference
RSA Terminology Changes
The following table describes the differences in the terminologies used in the different versions of RSA products and components.
|
Previous Version |
New Version |
Examples/Comments |
|---|---|---|
| Company ID | Organization ID | |
| Account | Credential | |
| Token | OTP Credential |
SecurID OTP Credential |
| Tokencode | OTP/Access Code |
SecurID OTP, SMS OTP, Voice OTP Emergency Access Code, Disable Access Code |
| Hardware Token | Hardware Authenticator | |
| Device Serial Number | Binding ID | |
| Device | Credential/Authenticator | |
| Device Registration Code | Registration Code | |
| Authenticate App | Authenticator App |
Known Issues
OSm does not support on-demand authentication or forced authentication after a PIN change.
Certification Details
RSA Authentication Manager 8.7 or later
