RSA Announces the June 2021 Release of RSA SecurID Access
2 years ago
Originally Published: 2021-06-08
The June 2021 release of RSA SecurID Access contains the following features.
 

This release includes miscellaneous identity router improvements. Identity routers will be updated according to the schedule posted in the Release Notes.

Identity Router Upgrades Available for the SUSE Linux Enterprise Server (SLES) Operating System

To strengthen the overall security of RSA SecurID Access, in June 2021 RSA is rolling out significant improvements that harden identity routers to meet Security Technical Implementation Guide (STIG) standards. You can update your identity router software version to 12.12.x and the operating system from SLES 11 SP4 to SLES 12 SP5. For more information on upgrade paths for various environments, see the Release Notes.
 
RSA is releasing a new SecurID 3.0 app in June 2021 that will make it easier than ever for iOS and Android users to manage multiple software tokens, generate tokencodes, and view token information all in one place. The process for importing tokens and using them to authenticate will remain the same in the new app. You do not need to distribute new tokens to users who already have tokens on their devices. Users who already have software tokens do not need to re-import a token when they download the new SecurID app. The SecurID app will replace the existing token app. For more information, see this advisory.
 

Cloud-Managed SID700 Hardware Tokens

The Cloud Authentication Service now supports SID700 hardware tokens, unleashing the potential of the cloud platform to meet your specific regulatory, security, and business requirements. The total cost of ownership is significantly reduced because users can self-register, activate, and manage their own tokens in My Page.
 

Significant changes to identity source synchronization are coming in future releases. Beginning in July, users will automatically be synchronized to the Cloud Authentication Service in real-time, eliminating the need to schedule synchronization tasks. These changes ensure that just-in-time synchronization will become the primary method for keeping your identity sources up-to-date. Your identity routers' connections to directory servers and to the Cloud Authentication Service must be fast enough to respond within the expected window before connections time out. The changes will occur according to the timetable provided in the Release Notes.

Beginning September 2021, the Cloud Administration Console URLs for your company will change to include your company subdomain. For example, if you currently access the Console with https://na2.access.securid.com/ and your company subdomain is abcdcorp, you will access the Console with https://abcdcorp.access.securid.com. As a result of this change, the Cloud Authentication Service will be able to dynamically redirect your administrative requests to a suitable environment if a problem is detected that affects service availability. For more information, see the Release Notes.

RSA MFA Agent 1.3 for macOS and RSA MFA Agent 2.1.1 for Windows

RSA MFA Agent will extend the power of modern authentication to Windows and and macOS computers. Online or offline, users will have a convenient way to authenticate to their computers, while administrators can secure access to users' machines.

Highlights from RSA MFA Agent 1.3 for macOS Release

  • You can install RSA MFA Agent on macOS computers running with Apple M1 ARM based processors on the macOS Big Sur (11.1 or later) operating system.
  • Users can sign in online and offline using SID700 hardware tokens (managed in Cloud Authentication Service) by selecting the RSA SecurID authentication method.
  • Users can check their remaining offline days by using the RSA MFA Agent icon in the macOS menu bar. You can configure the Agent to display the notification. Users can also refresh their offline days using the RSA MFA Agent icon and the notification message.
  • You can specify if the Agent appends additional information as a suffix to the username and sends it to Cloud Authentication Service for authentication.
  • Approve authentication method is now FedRAMP NIST-800-63B compliant.
  • Easy to upgrade from version 1.1 and 1.2. If you are using RSA MFA Agent 1.0 for macOS, first upgrade to version 1.1 and then from version 1.1 to version 1.3.

Highlights from RSA MFA Agent 2.1.1 for Windows Release

  • Users can sign in online and offline using SID700 hardware token (managed in Cloud Authentication Service) by selecting RSA SecurID Token authentication method.
  • Easy upgrade from versions 1.2.1, 2.0.1, 2.0.2, 2.0.3, and 2.1.

RSA has also updated the following agents:

  • RSA Authentication Agent 8.1.3 for PAM adds support for the RHEL 8.3 (64-bit) operating system and Emergency Tokencode for Cloud Authentication Service users. Download the update here.
  • RSA MFA Agent 2.0.3 for Microsoft Windows resolves customer reported issues. Download the update here.

New and Updated Third-Party Integrations from RSA Ready

We would like to remind Technology Partners about the SecurID Authentication API, a REST-based programming interface that allows you to develop clients that process multifactor, multistep authentications through RSA Authentication Manager and the Cloud Authentication Service.

The SecurID Authentication API was released in 2019 and is one of the supported methods to integrate your client applications with the Cloud Authentication Service, in addition to SAML2 and RADIUS. It replaces RSA SecurID Authentication API for C and Java v8.6 to communicate with Authentication Manager. As of June 2021, v 8.6 is now End of Primary Support Level 2, which means there are no hot fixes available and only best effort support is provided.

To remain RSA Ready, all Technology Partners should plan to support the Cloud Authentication Service in your applications by the end of 2022. If you use v 8.6 or older, you may update to the SecurID Authentication API. Documentation and sample code is available on RSA Link. Contact SecurID Partner Engineering for questions and technical support, rsapesupport@rsa.com.

Sneak Preview of Upcoming Features

Your App, Your User Experience, Your Way 

Build your own custom authenticator app using the new SecurID SDK 3.0 for iOS and Android. Offer your users a way to authenticate with convenient MFA options while seamlessly maintaining a similar look and feel across your existing applications for a better overall user experience.

RSA SecurID Access is on Track for FedRAMP Authorization

The Federal Risk and Management Program’s Joint Authorization Board (FedRAMP JAB) announced it is prioritizing RSA SecurID Access for a slot to work with the JAB to achieve a Provisional Authorization to Operate (P-ATO). By prioritizing RSA SecurID Access, the JAB – the primary governance and decision-making body for FedRAMP, consisting of the CIOs from the Department of Homeland Security, General Services Administration, and Department of Defense – signals that RSA is on its way to securing access for federal agencies and public sector organizations in the cloud. For more information see our blog.

Announcement
Don't see what you're looking for?