Cloud Authentication Service Updates
The following sections provide information on the new and enhanced features of the Cloud Authentication Service (CAS).
New APIs for Password Reset and Void Password Reset Code Now Available
The Password Reset API is now available for generating reset codes for users when signing into My Page. This API generates reset codes for specified users and allows administrators to configure the validity duration. Additionally, this API can send the generated reset codes directly to the users' default email addresses.
Enhancements to Microsoft Entra ID Authentication Using External Authentication Method (EAM)
In the Cloud Administration Console, administrators can now configure Microsoft Entra ID Relying Party settings and manage Authentication Options and Factor Classes through the Authentication tab. Furthermore, in the Connection Profile tab, the Relying Party Issuer URL and the Entra ID Application ID fields are now automatically populated with EAM values. For instructions on how to replace these default EAM values with Custom Control values, refer to the Microsoft Entra ID Custom Controls - Relying Party Configuration Using OIDC - RSA Ready Implementation Guide.This integration ensures users have access to the appropriate authentication methods for accessing protected resources. For more information, refer to the Microsoft Entra ID Authentication Methods (EAM) Implementation Guide .
In response to this integration, the RSA Authentication API now includes optional parameters for specifying Authentication Context Class Reference (ACR) and Authentication Methods Reference (AMR) values. These parameters can be used to filter authentication methods available to users.
Additionally, RSA now integrates with O365 Government Community Cloud (GCC) High through EAM, providing enhanced security and seamless integration for users within specialized government cloud environments.
Access Policy 2.0 Support for OpenID Connect (OIDC) Relying Parties
In this release, administrators can configure OIDC Relying Party applications to use Access Policy 2.0 through the Cloud Administration Console. For OIDC Relying Party applications where CAS manages both primary and additional authentication, administrators can now select from the available Access Policies 2.0.Updated FIDO Web Authentication and Terminology
The web authentication pages are updated to align with the latest FIDO Alliance terminology and icons.Important Notice: Required Use of Tenant-Specific URLs
Administrators must use their assigned URLs. Access through URLs specifying specific regions or sites will be blocked and not redirected. If an administrator has accessed the Cloud Administration Console using a non-assigned URL, a warning has been displayed in the console for the past two years.
Subscribe to status.securid.com for the Cloud Authentication Service Status Updates
For information about all service incidents and scheduled maintenance windows for the Cloud Authentication Service, subscribe to https://status.securid.com.
Upcoming End of Primary Support (EOPS) Details
The following table provides details of the RSA products reaching the end of support within the next six months:
| Product | Version | EOPS Date | Extended Support Level 1/Level 2 |
|---|---|---|---|
| Authenticator for Windows | 6.1.2 | November 2024 | No |
| 6.1.1 | August 2024 | No | |
| RSA Authentication Manager | 8.6 | August 2024 | August 2025/August 2026 |
| Authentication Agent for PAM | 8.1.x | November 2024 | No |
Identity Router Update Schedule and Versions
Identity routers will be updated according to the following schedule. Downloading the new identity router image when you deploy new identity routers ensures that you benefit from the latest security improvements.
| Date | Description |
|---|---|
|
AU: 6/25/2024 EU/IN/JP: 6/27/2024 NA: 6/28/2024 GOV: 6/28/2024 CA/SG: 6/28/2024 | Updated identity router software is available to all customers. |
| Default: Saturday 10/05/2024 | Default date when identity routers are scheduled to automatically update to the new version unless you modify the update schedule or update manually. |
| Last: Sunday 10/27/2024 |
If you postponed the default date, this is the last day when updates can be performed. |
The new identity router software versions are:
|
Identity Router Deployment Type | Version |
|---|---|
| On-premises | 12.21.0.0 |
| Amazon Cloud | RSA_Identity_Router 12.21.0.0 |
Third-Party Integrations from RSA Ready
The following integrations were recently completed or certified by RSA through the RSA Ready Technology Partner Program. For the complete catalog of Implementation Guides, see RSA Ready Integrations on the RSA Community.New Integrations for the Cloud Authentication Service
- Avaya
- AWS Identity Center CloudWatch
- AWS Workspaces
- Microsoft Entra ID
- PingDirectory as an Identity Source (Cloud & AuthMgr)
- PingFederate (OIDC)
- Splunk Cloud
- Trellix
- Yodeck
Updated Integrations for the Cloud Authentication Service
- Atlassian Confluence
- Blogin
- DocuSign
- Flatter Files
- Freshworks Freshdesk
- HappyFox
- Kintone
- Microsoft M365
- Trello
Related Articles
Microsoft 365 Government Community Cloud Conditional Access Number of Views RSA May 2024 Release Announcements Number of Views Release Notes Archive - Cloud Authentication Service and Authenticators (August 2024 - January 2024) Number of Views RSA September 2024 Release Announcements Number of Views RSA SecurID Authentication Agent 8.1.4 for PAM Release Notes Number of Views
Trending Articles
RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide RSA Authentication Manager 8.9 Release Notes (January 2026) RSA Release Notes for RSA Authentication Manager 8.8 Deploying RSA Authenticator 6.2.2 for Windows Using DISM Downloading RSA Authentication Manager license files or RSA Software token seed records
