Setup Guide
Table Of Contents
- 1 Introduction
- 2 iDRAC9 Configuration for RSA SecurID
- 3 RSA SecurID 2FA with Local Users
- 4 RSA SecurID 2FA with Active Directory Users
- 5 RSA SecurID 2FA with Generic LDAP Directory Users
- 6 Troubleshooting RSA SecurID Issues
- 6.1 Misconfiguration or iDRAC Configuration Gets Reset
- 6.2 Datacenter License Expires or Gets Downgraded or Deleted
- 6.3 Authentication Failures without being Prompted for RSA Passcode
- 6.4 Authentication failures with Correct RSA Passcode
- 6.5 Authentication Failures with Correct RSA Passcode due to Timeout
- 6.6 RSA Configuration gets lost after importing Server Configuration Profile
- Appendix A: Configure iDRAC Using RACADM
- Appendix B: References
Introduction
ID 450
Executive summary
As enterprise technology continues to advance, security risks are also on the rise. RSA SecurID is a well-
known and broadly deployed two-factor authentication (2FA) technology that may be used for authenticating a
user on a system. The iDRAC9 with the Datacenter license and firmware version 4.40.00.00 introduces
support for RSA SecurID as an additional two-factor authentication method. Another 2FA method that is
offered is Easy 2FA, which sends a randomly generated token to user’s email box when logging into iDRAC.
This document goes through how to configure iDRAC9 to enable RSA SecurID 2FA on local users, and
Active Directory and LDAP users. For information about RSA Authentication Manager server or RSA Cloud
Service configuration, see the RSA configuration documentation.