2. Double-click Local Users and Groups . 3. Right-click Groups , and select New Group . 4. Fill in the appropriate name and description, and click Create . Note: You do not need to fill in the Members field. 5. Repeat step 4 for each group you want to create. Activate a User on the Agent Host Note: RSA Authentication Manager also allows you to activate users on agent hosts through Authentication Manager groups. If a user is activated directly on the agent host and through an Authentication Manager group with the same user name but different Shell fields, the direct Shell field overrides the group Shell field. To activate a user on the agent host in RSA Authentication Manager 8.0 or later: 1. Access the appropriate user record in Authentication Manager. 2. Select User Authentication Settings for the user. The User Authentication Settings page is displayed for the user. 3. In the Default Shell field, enter the name of the local group created on the web server. 4. Click Save .
4: Configuring Web Access Authentication Properties 61 RSA Authentication Agent 8.0 for Web for IIS Installation and Configuration Guide Associate the Local Group with a File Protected by RSA SecurID The local group created on the Web Server must be associated with a file protected by RSA SecurID. To associate the local group with a file protected by RSA SecurID: Note: You must perform this procedure through Windows Explorer, not the IIS Manager. 1. On the IIS web server, open Windows Explorer, and browse to the file you want to associate with the local group. 2. Right-click the file, and select Properties . 3. Click the Security tab, and click Edit 4. In the Permissions for file_name dialog box, click Add . 5. In the Select Users, Computers, or Groups dialog box, add the local group you created on the web server. 6. Assign the appropriate permissions. 7. Click OK . Enable Group Security You can control group access to protected web resources by enabling group security on the IIS web server. To enable group security: 1. In the web_site Home pane, double-click RSA SecurID . 2. Under Advanced Settings , select Enable Group Security . 3. In the Actions pane, click Apply . 4. Restart the IIS server.
62 4: Configuring Web Access Authentication Properties RSA Authentication Agent 8.0 for Web for IIS Installation and Configuration Guide Enable Selective RSA SecurID Authentication You can configure the Web Agent to selectively always prompt or never prompt users for RSA SecurID authentication. Users who are not prompted for SecurID authentication are prompted for Windows passwords, provided the user is available in Active Directory. You enable selective SecurID authentication in the RSA Authentication Agent Control Panel. Note: In the Password Only mode, the user must enter the password in the Passcode field.
You've reached the end of your free preview.
Want to read all 154 pages?
- Summer '19
- Web page, World Wide Web, RSA Authentication Manager