Manual Chapter :
Configuring a SecurID
AAA server in APM
Applies To:
Show Versions
BIG-IP APM
- 16.0.0, 15.1.0
Configuring a SecurID
AAA server in APM
Configure a SecurID AAA server for Access Policy Manager (APM) to request RSA SecurID
authentication from an RSA Manager authentication server.
- On the Main tab, click .The Authentication screen opens.
- On the menu bar, clickAAA Servers By Type, and selectSecurID.The SecurID screen opens and displays the servers list.
- ClickCreate.The New Server properties screen opens.
- In theNamefield, type a unique name for the authentication server.
- In the Configuration area, for theAgent Host IP Address (must match the IP address in SecurID Configuration File)setting, select an option as appropriate:
- Select from Self IP List: Choose this when there is no NAT device between APM and the RSA Authentication Manager. Select an IP from the list of those configured on the BIG-IP system (in the Network area of the Configuration utility).
- Other: Choose this when there is a NAT device in the network path between Access Policy Manager and the RSA Authentication Manager server. If selected, type the address as translated by the NAT device.
This setting does not change the source IP address of the packets that are sent to the RSA SecurID server. (Layer 3 source addresses remain unchanged.) The agent host IP address is used only in Layer 7 (application layer) information that is sent to the RSA SecurID server. - For theSecurID Configuration Filesetting, browse to upload thesdconf.recfile.Consult your RSA Authentication Manager administrator to generate this file for you.
- ClickFinished.The new server displays on the list.
This
adds a new RSA SecurID server to the AAA Servers list.
