Successful SSH login attempts are not logged in /var/log/messages in Authentication Manager prior to 8.4
Originally Published: 2019-11-27
Article Number
Applies To
RSA Product/Service Type: Authentication Manager
RSA Version/Condition: 8.1.x, 8.2.x, 8.3.x
Issue
Cause
Resolution
- SSH into Authentication Manager.
- Change to root using the following command:
sudo su -
- Edit the file /etc/pam.d/common-session using the following command:
vim /etc/pam.d/common-session
- Press i to enter Insert mode.
- Add the following line to the end of the file:
session required pam_warn.so
- Press ESC to exit Insert mode.
- Save and exit by typing :wq!
- Repeat steps 1 - 7 on each RSA Authentication Manager instance, whether it is a primary or a replica, to log successful SSH authentication attempts for the instance.
Related Articles
SecurID Access: Repeated LDAP Bind Errors logged Number of Views Windows desktop machine does not display last logged in user ID with RSA Authentication Agent 7.x for Microsoft Windows Number of Views Oracle Database Memory Sizing for RSA Identity Governance & Lifecycle Number of Views RSA Identity Governance & Lifecycle aveksaServer.log file filling with warning messages "Logging event having message" and… Number of Views SailPoint Identity IQ to RSA Authentication Manager API Connection Fails with Error 'Could not Find the Realm: SystemDomain' Number of Views
Trending Articles
How to recover the Application and AFX after an unexpected database failure in RSA Identity Governance & Lifecycle Troubleshooting AFX Connector issues in RSA Identity Governance & Lifecycle RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide RSA Release Notes for RSA Authentication Manager 8.8 RSA Authentication Manager 8.9 Release Notes (January 2026)
Don't see what you're looking for?
