Cherry Smart Card-Reader stops working after the RSA Authentication Agent for Windows is installed
Originally Published: 2016-08-03
Article Number
Applies To
RSA Product/Service Type: Authentication Agent for Windows
RSA Product/Service Type: RSA Authentication Client (RAC)
RSA Version/Condition: 3.6
Platform: Windows
Platform (Other): Cherry Smart Card-Reader
O/S Version: 7 x64
Issue
This has been tested on a workstation to verify the behavior. Without changing anything, the card reader works without issue. After installing the RSA agent, the card reader works initially and then stops after locking the workstation. After rebooting the workstation, the user can login using the card reader. After locking the workstation, he cannot.
Steps to reproduce
The steps below were taken to reproduce the issue:| Time | Action/Result |
|---|---|
| 5:45 | RSA authentication successful. |
| 5:46 | Lock workstation. Login with smart card fails. |
| 5:47 | RSA authentication successful. |
| 5:49 | Ran RSA agent install and chose Modify. |
| 5:51 | Locked workstation and smart card login is successful. |
| 5:52 | Locked workstation and smart card login is successful. |
| 5:53 | Reboot workstation. |
| 5:56 | Login with smart card is successful. |
It appears that the RSA agent isn't getting fully installed and the subsequent Modify fixes something. The event viewer shows that the RSA agent install completed successfully with status of 0.
Cause
The ActivIDentity and Cherry cards have the same ATR as the old RSA 5200C smart card. The RSA RAC is trying to connect to this card, causing a conflict between the SID800 and the ActivIDentity or Cherry card and client.
* CAC = Common Access Card, Smart" ID card for active-duty military personnel, selected reserve, DoD civilian employees, and eligible contractor personnel.
Resolution
HKEY_LOCAL_MACHINE\SOFTWARE\RSA\RSA Desktop Common\Smart Card Registry Settings\SmartCards\RSA SecurID 5200C
Make sure to delete only the RSA SecurID 5200C key.
Workaround
Related Articles
MFA stopped working after TLS 1.2 Cloud enforcement in SecurId Access Number of Views Troubleshooting integrations with the RSA ID Plus Cloud Access Service (CAS) that stopped working following the CAS Entrus… Number of Views SNMP queries and traps not working after configuring Authentication/Privacy passwords on RSA Authentication Manager 8.x Number of Views ADFS stopped working after TLS 1.2 cloud enforcement in SecurId Access Number of Views RSA SecurID Access Automatic Integrated Windows Authentication (IWA) not working Number of Views
Trending Articles
RSA Release Notes for RSA Authentication Manager 8.8 Downloading RSA Authentication Manager license files or RSA Software token seed records AFX Server remains in a 'Not running' State, afx status shows 'timed out waiting for AFX applications to start' and mule_e… RSA Authentication Manager 8.7 SP1 Patch 1 Hotfix 1 RSA Authentication Manager 8.8 Security Configuration Guide
Don't see what you're looking for?
