Troubleshooting guide
C: Glossary 111
RSA Authentication Manager 6.1 to 8.1 Migration Guide
core attributes
The fixed set of attributes commonly used by all RSA products to create a user. These
attributes are always part of the primary user record, whether the deployment is in an
LDAP or RDBMS environment. You cannot exclude core attributes from a view, but
they are available for delegation.
Cryptographic Token-Key Initialization Protocol (CT-KIP)
A client-server protocol for the secure initialization and configuration of software
tokens. The protocol requires neither private-key capabilities in the tokens, nor an
established public-key infrastructure. Successful execution of the protocol results in
the generation of the same shared secret on both the server as well as the token.
custom attributes
An attribute you create in Authentication Manager and map to a field in an LDAP
directory. For example, you could create a custom attribute for a user’s department.
data store
A data source, such as a relational database (Oracle or DB2) or directory server
(Microsoft Active Directory or Oracle Directory Server). Each type of data source
manages and accesses data differently.
delegated administration
A scheme for defining the scope and responsibilities of a set of administrators. It
permits administrators to delegate a portion of their responsibilities to another
administrator.
delivery address
The e-mail address or the mobile phone number where the on-demand tokencodes will
be delivered.
deployment
An installation of Authentication Manager that consists of a primary instance and,
optionally, one or more replica instances.
demilitarized zone
The area of a network configured between two network firewalls.
device history
For risk-based authentication, the system maintains a device history for each user. It
includes the devices that were used to gain access to protected resources.
device registration
For risk-based authentication, the process of saving an authentication device to the
user’s device history.
distribution file password
A password used to protect the distribution file when the distribution file is sent by
e-mail to the user.
distributor
A Token Distributor or an administrator with distributor permissions.
DMZ
See demilitarized zone.