Forum Discussion

Wompi_203183's avatar
Wompi_203183
Icon for Nimbostratus rankNimbostratus
Sep 07, 2015

RSA SecurID PIN change workflow

Hi,

 

we have an portal access with a logon page for owa with securId. If the PIN expires the user can change it during logon but we want to change the workflow and skip two pages.

 

The two pages we want to skip are: 1. the "do you want to change your pin" question page where you have to enter y/n. 2. The last page where you have to enter a new token as verification after you entered your new pin. In our environment this isn't necessary and the pin changes immediately. Further because this is not necessary it seems the SecureId server sends some kind of error code and after entering the token a error message is displayed on the logon page but the pin was changed successfully. This confuses the user.

 

Is there any possibility to skip these pages?

 

Thank you very much Mark

 

4 Replies

  • Do you have RSA SecurID setup as a SecurID AAA object or RADIUS AAA object?

     

  • Hi,

     

    thank you for your answer. We have RSA SecurID setup as a SecurID AAA.

     

    Regards Mark

     

  • Hi,

     

    From my understanding the RSA server is telling the APM what to do. APM sends an auth request to RSA and the return information is then taken in by APM and delivered to the client. The input is taken from the client passed to RSA and then based on the return information we inform the client on what to do next.

     

    Can you check the RSA settings and see if you can disable those steps?

     

    Seth

     

  • Hi,

     

    thank you for your answer.

     

    Unfortunately I still haven't got the time looking into the rsa settings because I need an admin for this. I will give it a try next week.

     

    Regards Mark