Configuring RSA authentication fails with the error The file <C:\Users\Your_Username\Desktop\sdconf.rec> cannot be uploaded to the management server. This issue occurs after upgrading a Symantec Endpoint Protection Manager.
ConfigSecurId-0.log shows the following error:
2015-09-08 15:32:15.280 THREAD 79 SEVERE: SemLaunchService> getRequestTokenFromTokenMap>> requestTokens is null or empty, task name:ConfigureRSAAuth 2015-09-08 15:32:15.280 THREAD 79 INFO: SemLaunchService> execute>> The request token is null. Task name: ConfigureRSAAuth
scm-server-0.log shows the following error:
2015-09-08 15:32:15.280 THREAD 79 SEVERE: in: com.sygate.scm.server.consolemanager.requesthandler.ConfigSecurIdHandler java.io.IOException: SemLaunchService: fail to config RSA login! at com.sygate.scm.server.consolemanager.requesthandler.ConfigSecurIdHandler.configWinRSALogin(ConfigSecurIdHandler.java:133)
To resolve this issue, make the following changes to semlaunchsrv.properties. By default, this file is located in the folder C:\Program Files (x86)\Symantec\Symantec Endpoint Protection Manager\tomcat\etc.
Note: Backup semlaunchsrv.properties before making any changes to the file.
If not present, add the following lines:
sem.launchsrv.exefilepath.taskname.RsaSecurId.sepm=tomcat\\bin\\securid.exe sem.launchsrv.tokencount.taskname.RsaSecurId=1
If present, remove the following lines:
sem.launchsrv.tokencount.taskname.Msiexec=1 sem.launchsrv.tokencount.taskname.CommonCMD=1 sem.launchsrv.exefilepath.taskname.Msiexec.abs=msiexec sem.launchsrv.exefilepath.taskname.CommonCMD.conf=scm.os.sysroot*\\cmd.exe