Authentication context not added error when trying to authenticate using RSA Authentication Agent 2.0 for AD FS
RSA Product Set: SecurID RSA Product/Service Type: Authentication Agent for AD FS RSA Version/Condition: 2.0.x
This article explains how to resolve the following error with the RSA Authentication Agent 2.0.x for AD FS when using the agent for two factor authentication.
Configuring multifactor authentication (MFA) on a Windows Server with RSA Authentication Agent 2.0.x for AD FS with RSA SecurID for secondary authentication has no issues and user authentication is successful.
While configuring MFA on a Windows Server with RSA Authentication Agent 2.0.x for AD FS with RSA SecurID for primary authentication, breaks authentication.
The user is not prompted to enter the passcode and is presented with the following error:
Cannot authenticate. Contact your administrator.
The RSA Authentication Activity Monitor shows no authentication from that agent.
The log snippet below (by default in C:\Program Files\RSA\RSA Authentication Agent\AD FS MFA Adapter\logs/rsa_adfs.log) has the following errors: