A Firewall is blocking Remote AFX Agents and Remote Collection Agents from communicating with the Application Server in RSA Identity Governance & Lifecycle
Originally Published: 2020-08-14
Article Number
Applies To
RSA Version/Condition: 6.9.1, 7.0.x, 7.1.x
Issue
Cause
RSA Identity Governance & Lifecycle Root (Server) and Client Certificates are not compliant with the RFC-5280 standard. As a result, firewalls may block communication with Remote AFX Agents and Remote Collection Agents.
Resolution
- Upgrade to RSA Identity Governance & Lifecycle 7.2.0.
- Regenerate the server and client certificates as instructed in RSA Knowledge Base Article 000038314 -- How to Update the Root (Server) and Client Certificates in RSA Identity Governance & Lifecycle.
Workaround
Related Articles
RSA Authentication Manager 8.1 Hardware Appliance SNMP Reference Guide (Dell) Number of Views Remote AFX Server fails to start with an SSLHandshakeException error in RSA Identity Governance & Lifecycle Number of Views Troubleshooting AFX Server issues in RSA Identity Governance & Lifecycle Number of Views Verid - Potential Log In Issues Number of Views NICP Authentication requires passwords be consistant across sites Number of Views
Trending Articles
RSA Authentication Manager 8.9 Release Notes (January 2026) RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide RSA Release Notes for RSA Authentication Manager 8.8 RSA MFA Agent 2.5 for Microsoft Windows Installation and Administration Guide Authentication Manager Supported Hardware and Upgrade Paths
Don't see what you're looking for?
