RSA Secure Logon via SecurID Passcode

Our RSA administrators are required to use 2 Factors Authentication (2FA) for access to the RSA Security Console.  However, the RSA Secure Logon prompts for Password by default.  The administrator is not able to logon using SecurID Passcode (i.e. RSA 2FA).

  

In order to enable the administrators to access the RSA Security Console using RSA 2FA, the following steps are carried out to enable logon via SecurID Passcode:

1.     Access the Security Console via https://<FQDN>:7004/console-ims and select Authentication Methods under the Setup tab.  You will notice that the Console Authentication was configured to accept either LDAP_Password or RSA_Password.

2.     Append /SecurID_Native immediately after RSA_Password/LDAP_Password under Console Authentication and click Save.

3.     When the Confirmation Required dialog box appears, click on the box beside Update Authentication Methods Configuration Confirmation: to update authentication methods configuration and click on Update Authentication Methods Configuration.
 

4.     The next screen will shows the below message:

              Updated authentication configuration setting.

5.     Logout off from the Security Console and re-access the Security Console via https://<FQDN>:7004/console-ims.

6.     You will notice that the RSA Secure Logon allows the administrator to select the different Authentication Method (i.e. either Password or SecurID Passcode).

 

The administrators will now able to access the Security Console using 2FA via the SecurID Passcode (i.e. PIN + RSA token code).