Note: Impero Connect does not support RSA SecureID with SMS authentication.
When the Impero Security Server's preferred Guest type is set to "Guests enter RSA SecureID username and passcode" keep in mind that there are no settings within the configuration of Impero that bind your Security Server to the RSA server. Instead the Security Server relies on the locally installed RSA agent and nodesecret file to handle the communication with the RSA server.
There are a couple of tips that you will need to be aware of to complete the RSA integration.
One is that if the Security Server is running on an operating system that has UAC enabled, it is recommended that that you set the properties on both Security Server processes to run as administrator.
Locate the folder where Impero Security Server is installed.
Usually it is: C:\Program Files (x86)\Impero\Impero Connect Security Server.
Now locate each of the following executable files.amconfig.exe (Security Manager)Right click on each and choose properties from the pop up menu. Go to the compatibility tab. At the bottom there is a check box to enable called "Run this program as an administrator".
ISSW32.exe (Security Server)
The other tip is that in order for Security Server to be able to use RSA authentication on a 64-bit OS, you must copy the aceclnt.dll & sdmsg.dll from a 32-bit (OS) installation of the same RSA agent version. These files reside in C:\Program Files\Common Files\RSA Shared. Copy these files from a 32-bit machine to the 64-bit NSS installation. Place the .dll files in the same directory that Security Server is installed in. C:\Program Files (x86)\Impero\Impero ConnectSecurity Server.
After making these changes it may be necessary to restart the Impero Helper Service on the Security Server or reboot Windows.
Comments
0 comments
Please sign in to leave a comment.