While integration with RSA and siteminder for leveraging 2 factor authentication
Below steps were performed for integration:
- checked the compatibility of rsa agent and have installed the rsa agent on the server which has policy server.
- validated if the rsa agent is functioning correctly
- created a rsa auth scheme and have the same scheme configured for a sample application
- using the sample forms login page provided for rsa auth scheme
Users are not getting authenticated by rsa and the requests are not even reaching rsa authentication managers.
Below errors in policy server smtrace logs:
Policy Server: 12.8.x
It was observed that the policy server is not able to load ACE library and failed to Initialize RSA Authentication scheme.
Check the below configurations to fix this issue
-> A separate RSA Ace Client (Agent) installation on the system is NOT needed as stated in the docs. The required RSA Ace libraries are included with the policy server installation.
->The Policy Server installer on 64 bit Windows servers places the aceclnt.dll and sdmsg.dll files in the C:\windows\syswow64 directory, not C:\windows\system32.
->To configure RSA Ace on a 64 bit Windows OS , set the USR_ACE and VAR_ACE environment variables to the syswow64 directory, and place the sdconf.rec file in the syswow64 directory.