What is the difference between RSA ACE/Agent 5.x for UNIX and a Communications Server?
Originally Published: 2002-08-27
Article Number
Applies To
RSA ACE/Server
Communications Server
Issue
Types of RSA ACE/Agent Hosts
Technical and functional differences among Agent Hosts
Resolution
There are five types of Agents in the ACE/Server architecture (listed below). Although similar in functionality, there are specific technical and functional differences among them. Hence, an agent of one type might not work properly when its corresponding agent record specifies the wrong type of agent.
1. Communication Server: Remote access server or network access server (NAS), router, or firewall produced by a company that integrates RSA ACE/Agent code into its devices.
The authentication procedure might take longer on a communications server agent. As a result, the Server will have to calculate a wider authentication window --compared to a UNIX or Net OS agent.
If ACE/Server RADIUS is being used, there must be two agents: a) one of type Net OS Agent for the RADIUS server and b) one of type Communication Server for the NAS. The Agent Record of the Communication Server will contain the RADIUS encryption key shared between the ACE/Server RADIUS and the NAS.
2. Single-Transaction Comm Server: A communication server, router, or firewall produced by a company that integrates RSA ACE/Agent code into its devices. It can perform only the standard Enter PASSCODE and PASSCODE Accepted or Access Denied dialog.
3. Net OS Agent: Uses RSA ACE/Agent for Windows NT, Windows 2000, iPlanet Web Server, Domino Web Server, Novell NMAS, Novell NetWare Connect, or OpenVMS.
4. UNIX Agent: Uses RSA ACE/Agent for UNIX. After authentication, the sdshell included with this agent will use the default shell value to launch the corresponding UNIX shell for the user.
5. NetSP Agent: This agent is a Single-Transaction Comm Server, thus, it will send the node secret. However, it will not support the Next Token Code or New Pin modes. This is considered a legacy agent type and it is rarely used now.
Related Articles
What is the difference between a client and server certificate? Number of Views Difference between a Delegate Reviewer and Alternate Manager in Access Certifications using Identity Governance & Lifecycle Number of Views RSA SecurID end users setting their own PIN or next tokencode on a VPN connection Number of Views What is the difference between a critical and non-critical extension? Number of Views Differences to be aware of when configuring RSA SecurID Access Cloud IdP vs IDR IdP Number of Views
Trending Articles
Passwordless Authentication in Windows MFA Agent for Active Directory – Quick Setup Guide RSA Authentication Manager Upgrade Process RSA Authentication Manager 8.9 Release Notes (January 2026) An example of SSO using SAML and ADFS with RSA Identity Management and Governance 6.9.x RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide
Don't see what you're looking for?
