For some reason I can’t get Mr. Mackey out of my head on this one – “Quotes are bad…mmmmkay.” I recently inherited a project to get SecurID working and, it seemed pretty straight forward. I had setup SecurID at previous companies so I was sure it was something obvious.
After reviewing the config, and reviewing the documentation from RSA – which is good, it doesn’t read as a “Step-by-step to setting up AD” but it works. I opened a support ticket with RSA (non-urgent) and they got back to me within just a couple hours. The documentation provided by RSA for both the Authentication Manager installation and configuration and the firewall configuration were both spot on.
The problem was, when the identity source was originally setup in the RSA Operations Console, “quotes” were used around the user and user group base DN fields. What was odd, if I entered an OU that didn’t exist I would get an error, so it was seemingly reading the fields with the quotes but when I went to search for users in the Security Console I would get an ‘unexpected’ error. Removing the quotes around the user and user group base DN fields fixed this problem.