Hello,
We recently deployed RSA SecurID to our server environment, so that our server domain admins are required to authenticate with a token prior to getting onto the server, and this is working great so far. However, we don't have a solution for logging onto these servers with the server's associated Local Admin account, since the Local Admin is also prompted for a token. How are other companies handling this? We have some servers in our internal network and in our DMZ that host services and applications that require a local administrator to be logged in.
Thank you
You should be able to configure the agent to challenge based on groups. One option is to challenge all users except those that belong to a specific group.
Take a look at the "Create Groups of Users to Challenge with RSA SecurID" section in the administrative guide:
RSA Authentication Agent 7.4.2 for Microsoft Windows Installation and Administration Guide (DOC-100059)