V 8.4p1
RSA Authentication manager
Looking for guidance on how to provision the ‘next available token’ to RSA. Issue is it is using AD as it’s IdentitySource, so create account does not work. When AD is created it syncs over. Any create provisioning gets the error that IdentitySource is Read-Only. Anyone encounter this scenario?
Found out this is not supported when RSA is using an external datasource. There are workarounds using various customizations outside of the connector.
You can assign tokens, and radius profiles. I deleted group object in identity schema, and deleted the entire group schema as I dont care about AD groups in RSA
RSA admin roles are tricky, you need to promote entitlements in user agg task.
going to assign tokens via creation rule or custom rule. working that out now.