Sharepoint Forum

Ask Question   UnAnswered
Home » Forum » Sharepoint       RSS Feeds

RSA and SharePoint

  Asked By: Alyson    Date: Oct 18    Category: Sharepoint    Views: 1576

I'm not familiar with RSA but granting a domain user local system rights
is done all the time.

1. In Administrative Tools choose Computer Management
2. Expand Local Users and Groups
3. In the Properties of the local group you can add the domain user as a



10 Answers Found

Answer #1    Answered By: Christop Mcfadden     Answered On: Oct 18

What is RSA??????????????????????

Answer #2    Answered By: Stefanie Ruiz     Answered On: Oct 18


"RSA Security: solutions for enterprise data privacy and identity and
access management"

Answer #3    Answered By: Damon Garner     Answered On: Oct 18

It does seems odd that a security package would require a domain  account
to have local  admin rights. But that is the same requirement that WSS

Answer #4    Answered By: Royce Orr     Answered On: Oct 18

It's one thing to need local  system rights for one service and
completely another to give full rights to the whole machine just to get
something to work.

The first is necessary, the second is a big no-no, particularly on a
public-facing machine.

Answer #5    Answered By: Laura Walker     Answered On: Oct 18

dont you mean power user  with some special DCOM privs?

Answer #6    Answered By: Peter Peterson     Answered On: Oct 18

When you enable SecureID authentication on Windows Server 2003, the
network service account must have read/write access to
It also must have read permissions for the
%systemroot%\System32\SDconf.rec file.

Sounds like someone wants to do that the quick and dirty way.

Answer #7    Answered By: Renee Murray     Answered On: Oct 18

Where is that documented? I was checking the help for the Ace Client
and that is where it said it needed Local System. If you have a link
to the setup of Secure ID with Sharepoint that would be great!

Answer #8    Answered By: Harshini Raju     Answered On: Oct 18

That is actually from the ISA server documentation on RSA SecureID
configuration. It would be the same with IIS. Remember that SharePoint
does not do authentication, IIS does. SharePoint only does authorization
based on IIS authentication. SharePoint does not care how IIS found out
who you are.

Those who are configuring applications frequently do not understand what
permissions their application requires and just open up the system  until
it works.

I read the setup guide for a banking application once that said the
application required the SQL SA to have no password! Yeah, right. Like
that is going to happen on my watch.

Answer #9    Answered By: Laura Walker     Answered On: Oct 18

When trying to get RSA to authenticate on the front of a Sharepoint Web
Server I dont get the prompt. Here is my issue.

I have 2 web servers, and 1 SQL DB server.

On 1 of the web servers I want RSA, on the other I dont (internal vs

For RSA to work, it says my application pool needs to run with Local
System rights. But if I set this up on the web server, it can't
connect to the configuration database.

Is my only option to give a domain  user local  system rights, and if so,
how do I do that?

As a side note, I just want to thank all you MindSharp guys for all the
help you have given.

Answer #10    Answered By: Nina Banks     Answered On: Oct 18

Does the user  need local  system rights or just rights to certain folders
& registry keys?

To have to give a domain  user carte blanche local system  rights to your
Internet facing server so you can get a security method working strikes
me as ironic in the extreme! :-)

Is that the answer RSA came up with? Have you run the utilities from
Sysinternals (www.sysinternals.com) that will tell you what registry
keys etc are being accessed.

You really shouldn't have to do what you are doing, particularly on a
public-facing machine.

Didn't find what you were looking for? Find more on RSA and SharePoint Or get search suggestion and latest updates.