XYGATE User Authentication Reference Manual
XYGATE
®
User Authentication
™
(XUA) 1.85 Reference Manual
Chapter 13. Configuring the RSA SecurID Interface
XYPRO Technology Corporation 92 Proprietary and Confidential
13.3.2 RSA Authentication Server Files that Need Checking
This section describes the RSA Authentication server configuration changes and the
files that must be checked to enable the NonStop server to communicate with it.
RSA authentication server configuration changes
The RSA server administrator must alter the RSA server configuration as follows
1. Add the NonStop server to the RSA server’s configuration as an agent host of the
net os agent type.
2. Enable all the userids to use that agent host.
3. Generate the configuration file sdconf.rec for the new agent host.
The sdconf.rec file received from the RSA administrator must be shipped to the
NonStop server in binary form and placed in the /rsa directory in the OSS space on
NonStop server.
sdconf.rec
Check that the sdconf.rec file is in the /rsa directory, is of the expected date, and
allows everyone Read-Write access.
/rsa: ls -al
...
-rw-rw-rw- 1 XYPRO.SCOTT XYPRO 1024 Feb 18 11:10 sdconf.rec
...
sdopts.rec
Check that the sdopts.rec file is in the /rsa directory, is of the expected date, and
allows everyone Read-Write access.
/rsa: ls -al
...
-rw-rw-rw- 1 XYPRO.SCOTT XYPRO 1024 Feb 18 11:10 sdopts.rec
...
Check that the sdopts.rec file specifies the local IP address as the value to the
CLIENT_IP setting.
/rsa: cat sdopts.rec
CLIENT_IP=10.1.1.95
If the file does not exist, it has to be created.