000029083 – How to go about setting up the RSA SecurID Authentication Agent API 8.5 on a Linux operating system
Renamed /sandbox/java/jdk1.7.0/jre/lib/security/US_export_policy.jar and /sandbox/java/jdk1.7.0/jre/lib/security/local_policy.jar files to have a new extension of OLD.
The new JCE US_export_policy.jar local_policy.jar files were copied into the /sandbox/java/jdk1.7.0/jre/lib/security folder
A change is required in the JDKHOME /jre /lib/security/java.security file to include the RSA JCE and JSSE providers
Updated the list of providers in the /sandbox/java/jdk1.7.0/jre/lib/security/ java.security file as shown:
Copied the AuthSDK_Java_v8.5.0_1148_03_28_14_07_05_15.tar file into the /sandbox/java and unpacked this file with the tar xvf command (e.g. tar xvf AuthSDK_Java_v8.5.0_1148_03_28_14_07_05_15.tar ).
Three new folders were created in the /sandbox/agentAPI85test folder:
Example; showing the files in their folder locations:
An example copy of rsa_api.properties:
NOTE: comment out the echo lines to remove the system variables being displayed during usage. Leaving the echo lines in the two shell scripts will aid towards troubleshooting problems with the shell script.
Running the compile.sh shell script places the class files into the code folder
Example; showing the file and folder structure for /sandbox/agentAPI85test/ code folder after the compile:
Running the run.sh shell script
Opps.. I forgot to add the Authentication Agent record to the authentication manager primary instance Security Console.
The error Can’t create api: com.rsa.authagent.authapi.AuthAgentException: Exception processing configuration data Exception processing configuration data Agent RSA_AUTHSDK_AGENT is not registered on the server is expected as the sample code has reached out to the authentication manager and not found an authentication agent host called RSA_AUTHSDK_AGENT listed (as defined by the rsa_api.properties file).
After setting up an Authentication Agent record called RSA_AUTHSDK_AGENT in the authentication manager primary instance Security Console the following output is seen:
Log information from the configured log file my_api_events.log where INFO data was captured:
NOTE: marge.csau.ap.rsa.net, homer.csau.ap.rsa.net and lisa.csau.ap.rsa.net are authentication manager instances (where marge.csau.ap.rsa.net is the primary instance)
After the first successful authentication a new folder called RSA_AUTHSDK_AGENT appears in the /sandbox/agentAPI85test folder.
Contents of the /sandbox/agentAPI85test/RSA_AUTHSDK_AGENT folder: