SecurID® Knowledge Base
Find answers to your questions and identify resolutions for known issues with knowledge base articles written by SecurID experts.
Article Number
000035006
Applies To
RSA Product Set: SecurID
RSA Product/Service Type: Authentication Agent for Web: IIS
RSA Version/Condition: 7.x, 8.x
O/S Version: Windows Server 2008, R2, 2012, 2012 R2
RSA Product/Service Type: Authentication Agent for Web: IIS
RSA Version/Condition: 7.x, 8.x
O/S Version: Windows Server 2008, R2, 2012, 2012 R2
Issue
After using the RSA Authentication Agent for Web: IIS agent control panel as the admin user to generate the node secret the following error occurs when testing authentication from the browser:
Node secret mismatch
Cause
The IIS service does not have permissions to access the RSA Authentication Agent for Web: IIS directory under C:\Program Files\RSA Security\RSAWebAgent, which has the node secret file.
Resolution
Ensure that:
Image description
Image description
- The node secret file is named securid and the RSA Authentication Agent for Web: IIS installation directory has the user IIS_USRS, with at least read and execute permissions. Be sure to validate that the permission were inherited from there.
- Right click on the folder/file and select Properties then click on the Security tab.
- Click Edit > Add.
Image description- WebID has SecurID as the App Pool
Image description- The SecurID App pool is running with the identity of LocalSystem
Image description
In this article
