We are using RSA AA 7.3 P1 and have a below question.
When does RSA generate a new device ID. Is there a rule which can explain it. I have seen some instances where device ID do not change but user will still getting a 'CHALLENGE' response.
Please explain.
General information about Device Information Collection is given in the RSA Adaptive Authentication (On Premise) 7.3 Integration Guide, chapter 4, page 15 onwards.
All device information, including the specific field called the deviceIdentifier , is collected on the device itself by the client application running on the device, and is sent to RSA Adaptive Authentication.
In all cases, the device information is sent from the client application on the device, to the web application running on the web server. The web application should then include the device information in requests sent to RSA Adaptive Authentication. See the Adaptive Authentication (On Premise) 7.3 API Reference Guide for correct handling of device information sent to RSA Adaptive Authentication.
If you suspect an error with any device information, then check that:
You can monitor device information sent to RSA Adaptive Authentication, by turning on logging of SOAP requests and responses. Do this only temporarily, and preferably not in production, as it generates a lot of data into the logs on a busy system. For more information about SOAP logging, see the Adaptive Authentication (On Premise) 7.3 Operations Guide.