|RSA Product Set: SecureID |
RSA Version/Condition: PAM agent
O/S Version: 220.127.116.11.01
Steps to reproduce the issue:
- Expected behavior: When the primary unavailable, the replica server should authenticate the user request.
- Actual behavior: The authentication request fails, the auth request is not sent over to the replica server, the user prompted for password vs passcode, and authentication fails although sdopts.rec is configured properly
- Stop the services on the primary server
on AM 8.1
/opt/rsa/am/server/rsaserv stop all
on AM 7.1
/RSA_AM_HOME/server/rsaam stop all
- Try to authenticate from acetest
[root@DPMJP 64bit]# ./acetest
Cannot communicate with the ACE/Server.
Replica fail over is not working properly on this PAM agent version, reference AAPAM-504 and AAPAM-507