SecurID® Integrations

SailPoint IdentityIQ 8.1 - SecurID Access Implementation Guide

SailPoint IdentityIQ 8.1 - SecurID Access Implementation Guide

Certified: March 15, 2021



Solution Summary

IdentityIQ is SailPoint's identity and access management (IAM) solution for enterprise customers who prefer an on-premise deployment. IdentityIQ resource connectors provide pre-packaged integrations with enterprise databases, directories, healthcare, platforms and business applications running in their on-premise datacentres. The connectors allow businesses to provision and aggregate external user, account, entitlement and authentication credentials from a centralized location.


The SailPoint IdentityIQ RSA Authentication Manager resource connector enables RSA SecurID customers to manage RSA Authentication Manager users and groups, administrative roles, SecurID tokens and RADIUS profiles. The SailPoint IdentityIQ solution supports Multi-Factor Authentication (MFA) for logging into IdentityIQ. IdentityIQ can be configured to work with a variety of MFA providers, one of the out of the box integration is RSA SecureID.


This section describes the ways in which SailPoint IdentityIQ can integrate with RSA SecurID Access. Use this information to determine which use case and integration type your deployment will employ.

Use Cases

End User Logon Experience - When integrated, users must authenticate with RSA SecurID Access in order as part of the End User Logon Experience .

User Management - When integrated, User Management of SecurID users can be done with IdentityIQ User Management.


Integration Types

SecurID Admin SDK integrations can provide a rich user interface with all RSA SecurID Access features within the partner application. Refer to the Supported Features section in this guide see which features this partner application has implemented.

Supported Features

This section shows all of the supported features by integration type and by RSA SecurID Access component. Use this information to determine which integration type and which RSA SecurID Access component your deployment will use. The next section contains the steps to integrate RSA SecurID Access with SailPoint IdentityIQ for each integration type.


SailPoint IdentityIQ Integration with RSA Cloud Authentication Service

SailPoint IdentityIQ integration features Supported
View, Add, Modify and Delete RSA Authentication Manager users
View, Add, Modify and Delete RSA Authentication Manager groups
Assign/Unassign RSA Authentication Manager groups
Assign/Unassign RSA SecurID tokens
Enable/Disable RSA SecurID tokens -
Clear RSA SecurID token PINs
Reset RSA SecurID token PINs
Replace RSA SecurID tokens
Update Reset RSA SecurID tokens -
Perform initial import of RSA Authentication Manager resources (users, groups, tokens, RADIUS profiles)
Reconcile RSA Authentication Manager identity source with the IAM data store. -
Reconcile RSA SecurID tokens with the IAM data store. -
Assign/Unassign RSA administrative roles
Add, Modify and Delete RSA Authentication Manager RADIUS profiles -
View, Assign/Unassign Radius Profiles
MFA using SecureID tokens


- Not supported
n/t Not yet tested or documented, but may be possible.

Configuration Summary

The following links provide instructions on how to integrate SailPoint IdentityIQ with RSA SecurID Access.

This document is not intended to suggest optimum installations or configurations. It assumes the reader has both working knowledge of all products involved, and the ability to perform the tasks outlined in this section. Administrators should have access to the product documentation for all products in order to install the required components. All RSA SecurID Access and SailPoint IdentityIQ components must be installed and working prior to the integration.

Integration Configuration

Use Case Configuration


Certification Details

Date of testing: March 15, 2021

RSA Cloud Authentication Service

RSA Authentication Manager 8.5

SailPoint IdentityIQ 8.1


Known Issues

No known issues.

No ratings
Version history
Last update:
‎2021-09-08 01:20 PM
Updated by:
Article Dashboard