RSA Authentication Manager deployment means we are setting up a primary instance, replica instance and authentication agents.
Primary Instance is the place all administration tasks( user management, token management, token assigning to a user, agent registration and etc.) take place. And It is the responsible to handling the authentication requests.
Replica Instance provides redundancy of primary instance and authenticates the users. RSA recommends on deployment you should have both primary and replica instances. RSA Authentication Manager 8.1 supports up to 15 Replica instances.
According to the documentation of RSA, RSA Authentication Manager supports VMware virtual appliance, a Hyper-V virtual appliance, and a hardware appliance.
Virtual Appliance is pre configured VM image, It is ready to run in hypervisor. Installation of Software appliances into virtual machine and packaged into an image makes and virtual appliance.
RSA Authentication Manager Virtual Appliacne is consist of Linux operating system that is installed Authenticaiton Manager, RSA Radius Server software and insternal databases
Hyper Visor is alos known as Virual Machine Manager, This allows multiple operating system to runs on a single shared host. Each operating system is allowed to allocating their own resours, but the hypervisor know what is the need of each and allocate resources without ditrupt others.
VMware Virtual Appliance can be deployed on VMware VCenter Server or VMware ESxi Server on a given host machine. Install VMware ESxi Server and configure it.
The Hardware requirement for RSA Authentication Manager is as follow:
Disk Space 100 GB
4 GB swap file
Memory Requirements 8 GB
CPU Two virtual CPUs
The following video showed you how to install and configure VMware ESxi 5.5 in your physical server.
Next, we will see how to install RSA Virtual Appliance on VMware ESxi Server. For this, you need to install VSpher Client. VSpher Client is available for Windows you can download and install your machine in front of you.
Follow these steps to configure your RSA Authentication Manager :
- In the VMware vSphere Client, log on to the VMware ESXi server.
- Select File > Deploy OVF Template to start the deployment wizard.
- On the Source window, under Deploy from a File or URL, click Browse, and
locate the RSA Authentication Manager OVA file to deploy. Click Next.
- On the OVF Template Details window, verify that “RSA Authentication
Manager” and the expected version number displays. Click Next.
- On the End User License Agreement window, scroll to read the agreement. Click Accept, and Next.
- On the Name and Location window, enter a Name for the virtual appliance, and click Next.
- On the Datastore window, select a directory for the virtual machine files. A VMware datastore can be a location such as a Virtual Machine File System (VMFS) volume, a directory on Network Attached Storage, or a local file system path. Click Next.
- On the Disk Format window, select a format for storing virtual disks.
- On the Network Mapping window, select the networks for the virtual appliance.Click Next.
- On the Ready to Complete window, review your settings, and click Finish.VMware requires approximately five minutes to deploy the virtual appliance.
- Power on the virtual machine.
- For the virtual appliance, click the Console tab.The OS Console displays the progress of the boot sequence.
- Wait for 30 seconds to select the default keyboard layout, English (United States).To select a different keyboard layout, press any key and follow the instructions on the screen.
- When you are prompted by the OS Console, enter the following IPv4 network settings for the virtual appliance:
Fully Qualified Hostname
(Optional) DNS Server Configuration
Note: If your deployment uses IPv6-compliant agents, you can add IPv6 network settings in the Operations Console after Quick Setup is complete.
- Verify that the settings are correct. To accept the settings, type y, or wait 30 seconds.
- When the virtual appliance is deployed, the OS Console displays the Quick Setup URL and the Quick Setup Access Code. Record the following required information:The Quick Setup URL includes the IP address that you entered in step 14.https://<IP Address>/Quick Setup uses an IP address. The administrative consoles that are available after Quick Setup complete use a fully qualified domain name (FQDN).
The Quick Setup Access Code is required to initiate Quick Setup.
- Enter the Quick Setup URL in the browser, including https, and press ENTER:https://<IP Address>/
I hope you can access your security console.
- RSA ® Authentication Manager 8.1 Setup and Configuration Guide