We have agents all over the world (a sentence that sounds cooler than it actually is).
We also have Authentication Managers (one primary, several replica) all over the world.
I would like to make sure that agents prefer an AM server that is reasonably close to them, to reduce any slowness in the logon process.
How do agents choose which server they authenticate to? Do they ping the replicas first and work with the server that responds fastest? If not, is there a way to designate a "preferred" AM server for an agent?
BENJAMIN MORRIS,
It sound like you need to implement the USESERVER option in an sdopts.rec file that you can create on your agent machines. USESERVER lets you define the server(s) to which the agent should send authentication requests, along with a priority value from 0 (do not use) to 10 (use with highest priority).
For a detailed explanation of the sdopts.rec, please refer to the RSA Authentication Agent Installation and Administration Guide for the agent(s) that you have installed. While all of the RSA Authentication Agents use the sdopts.rec, some of our RSA Ready partners do not, so check the device implementation guides to verify.
Regards,
Erica