Forum Discussion

Nimbostratus

Nov 15, 2017

SecurID Authentication Failing on APM 12.1.2

I am having issues with SecurID authentication on a POC APM deployment. My first authentication attempt succeeds but any attempt after that fail with the following error. [root@AKOHDCPOCLTM...

BIG-IP Access Policy Manager (APM)

Cirrus

Nov 17, 2017

Jacob,

What is the RSA Authentication Report (logs) telling you?

Do you have a Primary and Replica RSA server? When you delete the sdstatus.12 file, the BIG-IP is performing the first authentication to the Primary RSA server. Once authentication is successfull, the node secret is exchanged and the sdstatus.12 file is updated telling the BIG-IP there is a Replica in the network.

This RSA setup is active/active meaning both RSA servers are accepting authentication request. The difference is, the Replica has a read-only database.

Could it be there is a firewall between BIG-IP and RSA and the firewall is not configured to allow SecurID traffic to the Replica RSA server?

Regards, Martijn.

Forum Discussion

SecurID Authentication Failing on APM 12.1.2

Recent Discussions

Find GSLB pool membership from vip IP

Pool Members communication with B-party via F5 VIP

Server 2 causing application slowness

F5Access | MacOS Sonoma

AS3 Deployments (shared objects)

Related Content

F5 BIG-IP Access Policy Manager (APM) - Google Authenticator and Microsoft Authenticator

Doing mTLS Authentication per URL

Distributed caching of authentication requests with NGINX Ingress Controller

Application Programming Interface (API) Authentication types simplified

iControl REST Authentication Token Management