RSA Error "Offline Authentication is not enabled or not available" in MFA agent
Article Number
Applies To
RSA Product/Service Type: Authentication Manager
Agent Version/Condition: 2.3.x
Issue
- Users are experiencing an error on their laptops with RSA MFA. Although the RSA MFA Console shows that Offline Days are downloaded successfully, an error message appears stating "Offline Authentication Not Enabled or not available."
- Errors in cloud console Event monitor
- .
- Errors on Agent side
Tasks
[Local: 2024-01-11 16:18:34.983] 2024-01-11 21:18:34.983 5872.19 [E] [RSA.Authentication.Cryptography.FileContentProtector.Decrypt] Caught exception: Exception decrypting data = System.Security.Cryptography.CryptographicException: The data is invalid.
at System.Security.Cryptography.ProtectedData.Unprotect(Byte[] encryptedData, Byte[] optionalEntropy, DataProtectionScope scope)
at RSA.Authentication.Cryptography.DataProtection.Unprotect(Byte[] data, Byte[] optionalEntropy, ProtectionLevel protectionLevel)
[Local: 2024-01-11 16:18:34.988] 2024-01-11 21:18:34.988 5872.19 [E] [RSA.Authentication.Offline.Services.DayFileManager.GetServerInfo] Decrypted server info is null. Returning null.
[Local: 2024-01-11 16:18:34.992] 2024-01-11 21:18:34.992 5872.19 [E] [RSA.Authentication.Offline.Services.DayFileSvc.OnEventFiveMinutesElapsed] Caught exception: System.NullReferenceException: Object reference not set to an instance of an object.
at RSA.Authentication.Offline.Services.DayFileSvc.OnEventFiveMinutesElapsed(Object state)
Resolution
Corrupted data or missing files within the "C:\ProgramData\RSA\OfflineData" folder.
- Delete all files inside the "C:\ProgramData\RSA\OfflineData" folder.
- Grant full control permissions for everyone to the "C:\ProgramData\RSA\OfflineData" folder.
- Retry online and offline authentication.
