This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements

SecurID® Knowledge Base

Find answers to your questions and identify resolutions for known issues with knowledge base articles written by SecurID experts.

CyberArk pass-through authentication stops at the login screen when the RSA Authentication Agent 7.x for Windows is installed

Article Number

000037153

Applies To

RSA Product Set:  SecurID
RSA Product/Service Type:  Authentication Agent for Windows
RSA Version/Condition:  7.x 
 

Issue

  • The CyberArk or mRemoteNG pass-through authentication stops at the login screen when RSA Authentication Agent 7.x for Windows is installed.
  • When a username and password is pre-provided on a published application,like CyberArk,Microsoft Remote Desktop Connection (mRemoteNG), the users will see the login screen again if the RSA Authentication Agent 7.x for Windows is installed.

       Image descriptionImage description 

Resolution

  1. Login to the machine where the RSA Authentication Agent for Windows is installed, with an administrator user who has read/write/execute permissions to the local group policy editor.
  2. In the Run box, type gpedit.msc and press Enter to access the local group policy editor.
  3. In the Local Group Policy Editor, navigate to Computer Configuration\Administrative Templates\Classic Administrative Templates\RSA Desktop\Local Authentication Settings\.
  4. Select the policy named Enable the Logon with credentials with remote applications.
  5. At the Accept remote credentials option, select All remote applications, as shown below:
           Image descriptionImage description
  1.  Click Apply and OK.
  2. Close the Local Group Policy Editor.
  3. From Start > Run, type cmd and press Enter.
  4. In the command prompt, type the command gpupdate /force then press Enter:

C:\Users\administrator> gpupdate /force
Updating policy...

Computer Policy update has completed successfully.
User Policy update has completed successfully.
  1. Log off from the desktop and try to login again
  2. This allows the authentication agent to use the credentials received from remote applications. Now the user should be able to login without an authentication prompt for unchallenged users.

Notes

Challenged users will still continue to get the passcode prompt and they need to authenticate using their RSA SecurID token.
0 Likes
Was this article helpful? Yes No
No ratings

In this article

Version history
Last update:
‎2021-04-24 12:15 AM
Updated by:
Administrator Administrator

Related Content

© 2023 RSA Security LLC or its affiliates. All rights reserved.