Archive for April, 2010

Stockley Park, 15th April 2010

RSA, The Security Division of EMC, announces Service Pack 3 for RSA Authentication Manager 7.1 and RSA SecurID Appliance 3.0.

Service Pack 3 (SP3) for RSA Authentication Manager 7.1 and RSA SecurID Appliance 3.0 is a significant service pack release which includes key security updates, numerous fixes and enhancements in areas such as scheduled backups, SDK update, schema documentation for SQL Queries, ODA/SMS token request directly from agents and a simpler patch installation process.

Platforms:

SP3 is available to ship today as a patch for both the RSA Authentication Manager Software and the RSA SecurID Appliance 3.0. Software versions include: Windows Server 2003 (32/64-bit) Standard and Enterprise, Red Hat Enterprise Linux ES/AS 4.0 (32/64-bit) and Solaris 10.

Both Red Hat Enterprise Linux 4.7 (32-bit and 64-bit) and Windows 2003 Enterprise R2 SP2 (32-bit and 64-bit) hosted on VM ESX 3.5* and VM ESX 4.0* have been qualified.

Security Update

Service Pack 3 (SP3) for RSA Authentication Manager 7.1 provides fixes for potential security vulnerabilities that could affect the RSA Authentication Manager. Please read the release notes for more information.

Affected Products:

• RSA Authentication Manager 7.1
• RSA Authentication Manager 7.1 SP2
• RSA SecurID Appliance 3.0
• RSA SecurID Appliance 3.0 SP2

Description:

The following features and enhancements are included in Service Pack 3:

• A rollup of all hotfixes since the RSA Authentication Manager 7.1 Service Pack 2 and RSA SecurID Appliance 3.0 Service Pack 2 release
• Fixes for potential security vulnerabilities
• An improved and simplified installation process that seamlessly incorporates the RSA Authentication Database
• MMC console (Appliance only)
• Scheduled backups from the Operations Console (Appliance only)
• Remote boot capability from the Operations Console (Appliance only)
• Auto-registration of agents is now enabled by default
• On-Demand Authentication (ODA) and SMS token code requests are now directly supported from agents
• Additional database schema documentation that enables the creation of custom SQL queries from the RSA Authentication Manager internal database and/or LDAP Identity Source to supplement report information available through the RSA Security Console
• Release of the RSA Authentication Manager 7.1 SDK which is available for both the appliance and software versions and includes numerous improvements.
• The ability to create custom user and user group searches using the RSA Authentication Manager SDK. A defect has also been fixed that allows large token search queries using the SDK.

Recommendation:

Customers using older versions of the RSA Authentication Manager 7.1 and Appliance 3.0, including SP2, are recommended to upgrade to Service Pack 3 at their earliest possible convenience to ensure they have the latest bug fixes and security vulnerability fixes. Customers must be at RSA Authentication Manager 7.1 SP2 or RSA SecurID Appliance 3.0 SP2 before they can upgrade to SP3.

(*) The following VMware ESX 4.0 features are supported: Cloning, Physical to virtual conversion, Virtual to physical conversion Advanced VMware infrastructure features such as Snapshots, VMotion, DRS, HA and Consolidated Backup are not supported. RSA recommends that customers use the features built in to RSA Authentication Manager 7.1 for these types of services.

Obtaining Documentation:

To obtain RSA documentation, log on to RSA SecurCare Online at https://knowledge.rsasecurity.com and click Products in the top navigation menu. Select the specific product whose documentation you want to obtain. Scroll to the section for the product version that you want and click the set link.

Obtaining More Information:

For more information about RSA SecurID, visit the RSA web site at http://www.rsa.com/node.aspx?id=1156