SecurID® Integrations
Silverfort
Authentication Platform 2.1
Peter Waranowski, RSA Partner Engineering
Last Modified: March 12th, 2019
Solution Summary
This section shows the way that Silverfort Authentication Platform can integrate with RSA SecurID Access.
Use Case
MFA Policy - When integrated, users must authenticate with RSA SecurID Access in order to access the resources as defined in the Silverfort policy. MFA Policy can be integrated with RSA SecurID Access using the SecurID Authentication API.
Integration Type
SecurID Authentication API integrations can provide a rich user interface with all RSA SecurID Access features within the partner application. Refer to the Supported Features section in this guide see which features this partner application has implemented.
Supported Features
This section shows all of the supported features by integration type and by RSA SecurID Access component. Use this information to determine which integration type and which RSA SecurID Access component your deployment will use. The next section in this guide contains the instruction steps for how to integrate RSA SecurID Access with Silverfort Authentication Platform using each integration type.
Silverfort Authentication Platform integration with RSA Cloud Authentication Service
| Authentication Methods | Authentication API | RADIUS | Relying Party | SSO Agent |
|---|---|---|---|---|
| RSA SecurID | - | - | - | - |
| LDAP Password | - | - | - | - |
| Authenticate Approve | ✔ | - | - | - |
| Authenticate Tokencode | - | - | - | - |
| Device Biometrics | ✔ | - | - | - |
| SMS Tokencode | - | - | - | - |
| Voice Tokencode | - | - | - | - |
| FIDO Token | n/a | n/a | - | - |
Silverfort Authentication Platform integration with RSA Authentication Manager
| Authentication Methods | Authentiaction API | RADIUS | Authentication Agent |
|---|---|---|---|
| RSA SecurID | - | - | - |
| On Demand Authentication | - | - | - |
| Risk-Based Authentication | n/a | - | - |
| ✔ | Supported |
| - | Not supported |
| n/t | Not yet tested or documented, but may be possible. |
Configuration Summary
This section contains instruction steps to integrate Silverfort Authentication Platform with RSA SecurID Access and how to apply it to the use case.
This document is not intended to suggest optimum installations or configurations. It is assumed that the reader has both working knowledge of all products involved, and the ability to perform the tasks outlined in this section. Administrators should have access to the product documentation for all products in order to install the required components. All RSA SecurID Access and Silverfort Authentication Platform components must be installed and working prior to the integration.
This section contains instructions on how to integrate Silverfort Authentication Platform with RSA Cloud Authentication Service using SecurID Authentication API.
Architecture Diagram
RSA Cloud Authentication Service
To configure the integration with RSA Cloud Authentication Service, you must first collect the Authentication API key and Authentication Service Domain for your RSA SecurID Access tenant.
Logon to the Cloud Administrative Console and browse to My Account > Company Settings > Authentication API Keys and copy the Description and Key.
Browse to Platform > Identity Routers > Edit > Registration and copy the Authentication Service Domain.
Silverfort Authentication Platform
Follow the steps in this section to configure Silverfort Authentication Platform as an authentication API client to RSA Cloud Authentication Service.
Procedure
1. Login to Silverfort Admin console and browse to System Setup > Admin Console Configuration.
2. Configure the RSA Integration settings and click Save Changes.
- Enter the RSA Cloud Authentication Service REST Endpoint.
- Enter the RSA Authentication API Key.
Configuration is complete.
Certification Details
Date of testing: Feb 20, 2019
RSA Cloud Authentication Service
Silverfort Authentication Platform 2.1
Known Issues
No known issues.
