Identity Management – Access Management – RSA

Rsa authentication options

Rsa authentication options


Users may receive a notification through the mobile app for them to approve or deny, or use the Authenticator app to generate an OATH verification code that can be entered in a sign-in interface. If you enable both a notification and verification code, users who register the Authenticator app can use either method to verify their identity.

RSA Support Plans and Options | RSA Link

The Authenticator app automatically generates codes when set up to do push notifications so a user has a backup even if their device doesn't have connectivity. Third-party applications that use OATH TOTP to generate codes can also be used.


The Vault works together with RSA SecurID via RADIUS protocol to add another layer of security to your system. Using a Token, which is a keyfob, a card, or a PINPAD card, users type in a dynamic passcode during logon to the Vault.

000039244 - Workflow Variables under the Resour... | RSA Link

On iOS or Android, the app prompts the user for device unlock credentials, such as a passcode. The user must set up device unlock credentials to reset the PIN.

85% of hacking-related breaches involve compromised and weak credentials*, and workforces are becoming increasingly dynamic, making identity and access management increasingly difficult. Now, more than ever, ensuring the right user has the right access to the right applications is critical to managing digital risk. RSA SecurID Access provides peace of mind that the weakest link—user identities—is secured.

With text message verification during SSPR or Azure Multi-Factor Authentication, an SMS is sent to the mobile phone number containing a verification code. To complete the sign-in process, the verification code provided is entered into the sign-in interface.

Even if you use an authentication method such as SMS-based sign-in when the user doesn't use their password to sign, a password remains as an available authentication method.

For details on how Voice Tokencode phone numbers are handled during identity source synchronization, see Identity Sources for the Cloud Authentication Service.

A valid phone number (landline or mobile) is stored for the user in the Cloud Authentication Service. The phone number can be synchronized from the LDAP directory server or entered manually by the administrator.

Deliver convenient, secure access to your extended enterprise with RSA SecurID Access, the leading multi-factor authentication and identity assurance solution. Whether you deploy it as a service in the cloud or on premises, RSA SecurID Access protects both SaaS applications and traditional enterprise resources with a full range of authentication methods and dynamic, risk-driven access policies.

If users don't want their mobile phone number to be visible in the directory but want to use it for password reset, administrators shouldn't populate the phone number in the directory. Instead, users should populate their Authentication Phone attribute via the combined security info registration at https:///setupsecurityinfo. Administrators can see this information in the user's profile, but it's not published elsewhere.

The Authenticator app can be used as a software token to generate an OATH verification code. After entering your username and password, you enter the code provided by the Authenticator app into the sign-in interface. The verification code provides a second form of authentication.

For direct authentication using text message, you can Configure and enable users for SMS-based authentication(preview). SMS-based sign-in is great for front-line workers. With SMS-based sign-in, users don't need to know a username and password to access applications and services. The user instead enters their registered mobile phone number, receives a text message with a verification code, and enters that in the sign-in interface.

OATH hardware tokens are supported as part of a public preview. For more information about previews, see Supplemental Terms of Use for Microsoft Azure Previews


Leave a comment