AnsweredAssumed Answered

Web Portal Question

Question asked by Dave Rudolph on May 8, 2018
Latest reply on May 8, 2018 by Jay Guillette

Like • Show 0 Likes0
Comment • 2

OK, I'm researching how to integrate RSA into our ASP.Net web applications. I was reading over the Athentication Agent for Web:IIS documentation and it seems to indicate that it only supports two-factor authentication using credentials and the SecurID token. We are wanting to allow other methods, so I started reading the document on developing a Custom Web Portal. In the beginning, it has a table showing the difference between the Standard and Custom portals. That table indicates that the Standard Portal supports "Additional authentication based on policy criteria". So, which is it?

Am I not reading the right documentation? Is there a pre-built RSA web portal that we can host locally that will support multiple authentication methods?

Thanks.

No one else has this question

Outcomes

Ted Barbour

May 8, 2018 11:47 AM

Hi Dave - our SecurID Access Cloud Authentication Service supports multiple authentication methods for SaaS apps, on-prem web apps, and RADIUS clients.

A couple of things to check out are:

the Free MFA offer at the top of the www.rsa.com homepage
RSA SecurID Access Overview

Thanks,

Ted

Actions

Jay Guillette

@ Ted Barbour on May 8, 2018 1:05 PM

The agent for IIS uses the long standing UDP port 5500 through the Agent API version 8.1 SP3, and this type of authentication supports 2 factor with a token, but also supports the Authentication Manager On Demand TokenCodes, where an On Demand user gets an On Demand PIN, and enters that at the PassCode prompt, and this user is then delivered a single TokenCode, either via email or SMS text, which then enter as the Next Token Code.

Authentication Manager also has Risk Based Authentication, which accesses the browser and user platform used to login to a Web App, and if this is a known or low risk PC, for example the user PC from his home VPN, then access granted with a Password (LDAP or internal RSA database user password). If risk is determined to be higher, different IP than the one learned from Home VPN, or things like browser or Java version changes, then after the Password is successfully entered, step-up authentication is triggered. With the AM version of RBA the only step up options are either Security Questions or OnDemand. With integration into SecurID access referenced by Ted above, there are more options of the multi-factor kind.

Actions

2 Replies

Ted Barbour May 8, 2018 11:47 AM
Mark Correct
Correct Answer
Hi Dave - our SecurID Access Cloud Authentication Service supports multiple authentication methods for SaaS apps, on-prem web apps, and RADIUS clients.
A couple of things to check out are:

the Free MFA offer at the top of the www.rsa.com homepage
RSA SecurID Access Overview

Thanks,
Ted
Like • Show 1 Like1
Actions
- Jay Guillette @ Ted Barbour on May 8, 2018 1:05 PM
  Mark Correct
  Correct Answer
  The agent for IIS uses the long standing UDP port 5500 through the Agent API version 8.1 SP3, and this type of authentication supports 2 factor with a token, but also supports the Authentication Manager On Demand TokenCodes, where an On Demand user gets an On Demand PIN, and enters that at the PassCode prompt, and this user is then delivered a single TokenCode, either via email or SMS text, which then enter as the Next Token Code.
  Authentication Manager also has Risk Based Authentication, which accesses the browser and user platform used to login to a Web App, and if this is a known or low risk PC, for example the user PC from his home VPN, then access granted with a Password (LDAP or internal RSA database user password). If risk is determined to be higher, different IP than the one learned from Home VPN, or things like browser or Java version changes, then after the Password is successfully entered, step-up authentication is triggered. With the AM version of RBA the only step up options are either Security Questions or OnDemand. With integration into SecurID access referenced by Ted above, there are more options of the multi-factor kind.
  Like • Show 0 Likes0
  Actions

Web Portal Question

Outcomes

Related Content

Recommended Content