Contact Us
SecurID Access

SecurID Access

RSA SecurID Access delivers strong security and extensive compatibility.

Basic Information

RSA SecurID Access is a comprehensive multi-factor authentication (MFA) and identity assurance solution designed to secure access to network resources, applications, and data. It employs a combination of "something you know" (a PIN or password) and "something you have" (a hardware or software token) to verify user identity.

  • Model: The RSA SecurID ecosystem includes various components: hardware tokens (e.g., SID700, SID800 with USB/smart card functionality, SID200, SID520, SID900), software tokens (desktop applications for Windows and macOS, mobile applications for Android and iOS), and core systems like RSA Authentication Manager (server-side software) and RSA Cloud Authentication Service.
  • Version: The latest stable version for RSA Authentication Manager is 8.8, released in April 2025. RSA SecurID Authenticator for Windows is at version 6.0.1, released in June 2022. Mobile authenticator apps are typically version 4.x.
  • Release Date: The original RSA SecurID mechanism was released in 1993. Specific component versions have more recent release dates, such as Authentication Manager 8.8 in April 2025 and Authenticator 6.0.1 for Windows in June 2022.
  • Minimum Requirements:
    • Hardware Tokens: Standalone devices with no specific OS/RAM/CPU requirements.
    • Software Tokens (Windows): Windows 10 version 1709 or higher. Authenticator 6.0.1 supports Windows 10 (various x64bit versions from 1903 to 21H2), Windows 11 21H2 x64bit, and Windows Server 2022.
    • Software Tokens (macOS): macOS BigSur 11.0 or later.
    • Software Tokens (Mobile): Android 9.0 or later, iOS 14.0 or later.
    • RSA Authentication Manager (Virtual Appliance): Requires a virtualized environment on VMware or Microsoft Hyper-V, running SUSE Linux (currently v15/SP3).
    • RSA Authentication Manager (Web Tier): Supports Red Hat Enterprise Linux 9.0 Server (64-bit) and Windows Server 2025 (for AM 8.8 Patch 1).
  • Supported Operating Systems:
    • Client-side (Software Tokens): Windows 10/11, Windows Server 2022, macOS BigSur+, Android 9.0+, iOS 14.0+.
    • Server-side (Authentication Manager): Virtual appliance based on SUSE Linux (v15/SP3) on VMware or Microsoft Hyper-V. Web Tier supports Red Hat Enterprise Linux 9.0 Server and Windows Server 2025.
    • Authentication Agent for PAM: Supports Red Hat Enterprise Linux (RHEL) 6.8-6.10 (32-bit and 64-bit), RHEL 7.1-7.5 (64-bit), CentOS 7.5 (64-bit), Oracle Linux 6.8-6.10 (64-bit), Oracle Linux 7.3-7.5 (64-bit), SUSE Enterprise Linux Server 11 SP3-SP4 (32-bit and 64-bit), SUSE Enterprise Linux Server 12-12 SP3 (64-bit), SUSE Linux Enterprise Server 15 (64-bit), Solaris SPARC 10, 10.5, 11.2, and AIX 7.1 TL3, 7.2 TL1.
  • Latest Stable Version: RSA Authentication Manager 8.8 (April 2025); RSA SecurID Authenticator 6.0.1 for Windows (June 2022).
  • End of Support Date: RSA Authentication Manager 8.7 has End of Primary Support (EOPS) dates ranging from May 2025 to January 2027, with extended support options available. A mandatory upgrade is required by October 6, 2025, for components using Entrust certificates to prevent service disruption.
  • End of Life Date: There is no single End of Life (EOL) date for the entire product line. Hardware tokens typically have their own lifecycle.
  • Auto-update Expiration Date: Not explicitly specified, but software components are regularly updated, implying continuous support for current versions.
  • License Type: RSA SecurID Access is available with subscription or perpetual licenses. It offers Base, Enterprise, and Premium license tiers.
  • Deployment Model: Supports on-premises (using RSA Authentication Manager and hardware appliances), cloud (via Cloud Authentication Service), and hybrid deployments.

Technical Requirements

RSA SecurID Access components have varying technical requirements, primarily for the server-side Authentication Manager and its associated web tier. Client-side software tokens generally align with host operating system requirements.

  • RAM:
    • RSA Authentication Manager (Virtual Appliance): 8 GB.
    • Web Tier: 4 GB.
    • Software Tokens: Minimal, typically aligning with the host operating system's standard requirements.
  • Processor:
    • RSA Authentication Manager (Virtual Appliance): 2 virtual CPUs.
    • Web Tier: At least two virtual CPUs.
  • Storage:
    • RSA Authentication Manager (Virtual Appliance): 100 GB disk space (+ 4GB swap file).
    • Web Tier: 2 GB for installation and 4 GB to 20 GB free space for logs and component downloads.
  • Display: Not a primary requirement for server components; client-side software tokens utilize standard display capabilities of the host device.
  • Ports: Specific network ports are required for communication between Authentication Manager, agents, and the Cloud Authentication Service.
  • Operating System:
    • Server-side: Virtual appliance runs on SUSE Linux (v15/SP3) for VMware or Hyper-V. Web Tier supports Red Hat Enterprise Linux 9.0 Server and Windows Server 2025.
    • Client-side: Windows 10/11, macOS BigSur+, Android 9.0+, iOS 14.0+.

Analysis of Technical Requirements

The technical requirements for RSA SecurID Access are primarily focused on the server-side components, particularly the RSA Authentication Manager, which can be deployed as a virtual appliance or on dedicated hardware. The virtual appliance demands moderate resources (8 GB RAM, 2 vCPUs, 100 GB storage), making it suitable for deployment within existing virtualized infrastructures. The web tier has lighter requirements. Client-side software tokens are designed to run on common desktop and mobile operating systems with minimal overhead, leveraging the native capabilities of those devices. This architecture allows for flexible deployment, supporting both on-premises and cloud environments, and catering to a wide range of organizational sizes and existing IT infrastructures.

Support & Compatibility

RSA SecurID Access offers broad support and compatibility across various platforms and authentication methods, ensuring flexibility for diverse enterprise environments.

  • Latest Version: RSA Authentication Manager 8.8 (April 2025) and RSA SecurID Authenticator 6.0.1 for Windows (June 2022).
  • OS Support:
    • Client-side: Windows 10/11, Windows Server 2022, macOS BigSur+, Android 9.0+, iOS 14.0+.
    • Server-side: SUSE Linux (v15/SP3) for virtual appliances, Red Hat Enterprise Linux 9.0 Server, and Windows Server 2025 for Web Tier.
    • Authentication Agent for PAM: Extensive support for various Linux distributions (RHEL, CentOS, Oracle Linux, SUSE), Solaris, and AIX.
  • End of Support Date: RSA Authentication Manager 8.7 has End of Primary Support (EOPS) dates ranging from May 2025 to January 2027. Extended support options are available.
  • Localization: RSA SecurID Access is used globally in 138 countries, implying support for various languages and regional settings.
  • Available Drivers: Drivers are implicitly part of the software token installations and authentication agents for various operating systems.

Analysis of Overall Support & Compatibility Status

RSA SecurID Access demonstrates strong support and compatibility, covering a wide array of operating systems for both client and server components. The continuous release of new versions and patches, such as Authentication Manager 8.8 and Authenticator 6.0.1, indicates active development and maintenance. The product's ability to integrate with over 500 technology partners and thousands more via standards-based interoperability, including SAML, password vaulting, and RADIUS, highlights its extensive compatibility. The hybrid deployment model further ensures compatibility with both legacy on-premises applications and modern cloud-based services. The availability of extended support options for older versions like Authentication Manager 8.7 provides organizations with flexibility in their upgrade cycles.

Security Status

RSA SecurID Access is a robust multi-factor authentication solution with a strong focus on security, incorporating various features to protect against unauthorized access.

  • Security Features:
    • Multi-Factor Authentication (MFA): Offers a broad range of authentication options including hardware tokens (key fobs, USB/smart card), software tokens (mobile apps, desktop apps), push notifications, biometrics (fingerprint, face, eyeprint), SMS, voice, email, and FIDO tokens.
    • Dynamic Risk Scoring/Risk-based Authentication: Utilizes machine-learning algorithms and real-time context (user behavior, location, device, application sensitivity, threat intelligence) to analyze the risk level of each access request and apply appropriate authentication challenges.
    • Data Protection: Encrypts sensitive user data.
    • Time Synchronization: Patented technology synchronizes authenticators with the security server to ensure the validity of one-time passcodes (OTPs).
    • Offline Authentication: Supports offline authentication for Microsoft Windows and macOS users not connected to a network.
    • Hybrid Model: Provides a secure hybrid model combining cloud convenience with on-premises security and availability.
  • Known Vulnerabilities:
    • Man-in-the-Middle (MitM) Attacks: While tokens protect against password replay, they do not inherently protect against MitM attacks when used alone. Risk-based analytics in newer versions help mitigate this.
    • Predictable Random Number Generation: The security relies on the unpredictability of the token's random number generator.
    • 2011 Breach: RSA experienced a breach in 2011 where internal seed files used to verify hardware devices were stolen, leading to attacks on customers.
  • Blacklist Status: No general blacklist status is indicated, but the product addresses known vulnerabilities and continuously evolves its security posture.
  • Certifications: Hardware tokens are designed and tested to standards such as UL 913-6th Edition, CSA-C22.2-No. 157-92, and comply with ISO 13491-1.
  • Encryption Support: Employs public-key encryption authentication technology and encrypts sensitive user data.
  • Authentication Methods: PIN, OTP, push notification, biometrics (fingerprint, face, eyeprint), SMS, voice, email, FIDO, hardware tokens, software tokens.
  • General Recommendations: For enhanced security, it is recommended to combine RSA SecurID with additional authentication mechanisms like SSL to protect against certain attack types. Users should avoid using the Authenticator app on jailbroken or rooted devices.

Analysis on the Overall Security Rating

RSA SecurID Access maintains a high overall security rating due to its comprehensive multi-factor authentication capabilities and advanced risk-based authentication. It goes beyond traditional MFA by incorporating machine learning and contextual analytics to assess risk in real-time, dynamically adjusting authentication requirements. While historical vulnerabilities like the 2011 breach and inherent limitations against certain sophisticated attacks (e.g., MitM without additional layers) exist, RSA has continuously evolved the product to address these concerns, introducing features like risk-based analytics. The wide range of supported authentication methods and certifications for hardware tokens further solidifies its position as a robust security solution. Its enterprise-grade features and widespread adoption by large organizations, including Fortune 500 companies, attest to its strong security posture.

Performance & Benchmarks

RSA SecurID Access is engineered for enterprise-level performance and scalability, handling millions of users and numerous access points.

  • Benchmark Scores: Specific, publicly available benchmark scores (e.g., CPU utilization, latency under load) are not typically provided for enterprise security software. Performance is generally measured by scalability, reliability, and throughput.
  • Real-World Performance Metrics:
    • Scalability: Designed to scale to millions of users, protecting over 50 million identities. Supports up to 15 Authentication Manager replica instances for large WANs and temporary demand spikes.
    • Uptime: Cloud deployments achieve more than 99.9% uptime.
    • Consistent Performance: Users report consistent and reliable performance, with the software running smoothly and effectively without hindering productivity.
    • Agility: Authentication Manager Bulk Administrator (AMBA) allows onboarding of 1000+ users in significantly less time than manual processes.
  • Power Consumption: Not directly applicable to the software itself, but hardware appliances (e.g., Dell PowerEdge R240 XL, R640 XL) have typical enterprise server power consumption profiles.
  • Carbon Footprint: Not directly specified for the software. Cloud deployments may offer efficiency benefits compared to entirely on-premises infrastructure.
  • Comparison with Similar Assets: RSA SecurID Access competes with solutions like Azure Active Directory, Microsoft Active Directory, Okta Single Sign-On, Cisco Duo, Ping Identity Platform, OneLogin, CyberArk Workforce Identity, and AWS Identity and Access Management (IAM).
    • Users often highlight RSA SecurID's robust security, comprehensive features, and strong customer support.
    • Competitors like Microsoft Entra ID and Cisco Duo are sometimes noted for lower initial setup costs or ease of use.
    • RSA SecurID is often favored for its ease of administration and integration.

Analysis of the Overall Performance Status

RSA SecurID Access demonstrates strong performance characterized by high scalability, reliability, and efficient management capabilities. Its architecture supports millions of users and ensures high availability with over 99.9% uptime for cloud deployments. The ability to deploy multiple replica instances of Authentication Manager significantly enhances performance and resilience across large, geographically dispersed networks. While direct numerical benchmarks are not commonly published for this type of security solution, user feedback consistently points to smooth operation and effective security without impacting user productivity. The focus on enterprise-grade features, including bulk administration tools, underscores its design for high-performance, large-scale deployments.

User Reviews & Feedback

User reviews and feedback for RSA SecurID Access generally highlight its robust security and reliability, though some aspects of setup and management receive mixed comments.

  • Strengths:
    • Enhanced Security: Widely praised for its strong two-factor and multi-factor authentication, making it difficult for unauthorized users to gain access and protecting against phishing and password breaches.
    • Reliability and Consistency: Users report consistent, reliable performance and high uptime, ensuring secure access without issues.
    • Broad Integration: Seamlessly integrates with a wide variety of applications, both on-premises and cloud-based, including VPNs, SaaS applications, and traditional enterprise resources.
    • Flexibility in Authentication: Offers a broad range of authentication methods, including hardware/software tokens, push notifications, and biometrics, providing choice and convenience.
    • Scalability: Highly scalable, supporting organizations from small businesses to large enterprises with millions of users.
    • Ease of Administration: Users find the administration straightforward and efficient for managing user access.
    • Customer Support: Often cited as outstanding and highly skilled.
  • Weaknesses:
    • Setup Complexity: Some users find the initial setup process complex and lengthy.
    • Mobile App Dependency: The mobile app requires a smartphone and internet/cellular service, which can be a limitation for some users.
    • Offline Soft Token Activation: Activating soft tokens via QR code in offline mode can be challenging, often requiring an open port from outside to the internal RSA system.
    • Usage Statistics: Difficulty in obtaining usage statistics for tokens and users from archived logs.
  • Recommended Use Cases:
    • Secure Remote Access: Ideal for securing VPN access and remote work environments.
    • Cloud and SaaS Application Security: Extends MFA to cloud-based applications like Microsoft 365, AWS, and Salesforce.
    • Privileged Access Management: Enhances security for privileged accounts accessing critical systems.
    • On-premises Application Protection: Secures access to traditional on-premises applications, terminal servers, and Windows logins.
    • Identity Assurance: Verifying user identities and ensuring appropriate access levels.

Summary

RSA SecurID Access stands as a leading enterprise-grade multi-factor authentication and identity assurance solution, renowned for its robust security features and extensive compatibility. It offers a comprehensive suite of authentication methods, ranging from traditional hardware and software tokens to modern biometrics, push notifications, and FIDO, catering to diverse user preferences and security requirements. The asset's core strength lies in its dynamic risk-based authentication, which leverages machine learning and contextual analytics to provide adaptive security, challenging users only when necessary based on real-time risk assessment.

Technically, RSA SecurID Access is highly scalable, designed to support millions of users and integrate seamlessly across various on-premises, cloud, and hybrid environments. Its server-side components, like the RSA Authentication Manager, are deployable as virtual appliances with reasonable hardware requirements, ensuring flexibility for IT infrastructure. The product boasts broad operating system support for both client-side authenticators and server components, maintaining compatibility with current Windows, macOS, Android, iOS, and enterprise Linux distributions.

User feedback consistently praises its strong security, reliability, and ease of administration, making it a trusted choice for protecting sensitive data and resources across various industries. Its ability to integrate with hundreds of third-party applications and provide consistent access across different platforms is a significant advantage. However, some users note the initial setup complexity and certain limitations regarding offline soft token activation and detailed usage statistics as areas for potential improvement.

Overall, RSA SecurID Access is a powerful and mature solution for organizations seeking to implement strong, adaptive multi-factor authentication and identity assurance. Its continuous evolution, extensive feature set, and proven track record make it a highly recommended asset for securing access to critical systems and applications, mitigating identity-related risks, and maintaining compliance in today's complex threat landscape. It is particularly well-suited for large enterprises and organizations with hybrid IT environments requiring flexible and scalable authentication.

Information provided is based on publicly available data and may vary depending on specific device configurations. For up-to-date information, please consult official manufacturer resources.

Simplify your IT ecosystem with InvGate Asset Management

30-day free trial - No credit card needed

Get started

Clear pricing

No surprises, no hidden fees — just clear, upfront pricing that fits your needs.

View Pricing

Easy migration

Our team ensures your transition to InvGate is fast, smooth, and hassle-free.

View Customer Experience