Configuring RSA authentication with Control-M

This procedure describes how to configure RSA authentication with Control-M, which enables users to log in into all Control-M/EM clients with an RSA username, password, and token ID.

To configure RSA authentication with Control-M:

1. Contact the RSA Administrator to configure the RSA authentication agent, as described in Configuring the RSA Authentication Agent.
2. Define the PasswordEncode system parameter value to 0, as described in Defining Control-M/EM system parameters.
3. Define the AuthenticationMethod system parameter value to RSAAuthenticationAgent, as described in Defining Control-M/EM system parameters.
4. Recycle the GUI Server.
5. Validate the authentication by doing the following:
   1. Log in to a Control-M client with the RSA username, password, and token ID, as described in Logging in to Control-M.

      The RSA username must be the same as the username in LDAP or the Control-M/EM database.

   2. Verify that the users authorizations are based on the LDAP groups (see LDAP Groups authorization) or Control-M/EM gropus (see Control-M/EM user and group authorizations).

   NOTE: If there is a problem with the authentication, and you want to revert to the previous method, reset AuthenticationMethod and PasswordEncode to their original values and recycle the GUI Server.

6. Restart the Control-M Configuration Server.