Cache Challenge Settings

Allows Authentication Agent to retrieve the user's challenge setting from a local cache, if the agent cannot determine the user's group membership from the domain controller.

If Authentication Agent cannot find the user's challenge setting in the cache, then you can set one of the following:

• Challenge the user
• Do not challenge the user (allow Windows password)

Supported on: Supported on Windows 7 or later.
Enable policy:
Registry HiveHKEY_LOCAL_MACHINE
Registry PathSOFTWARE\Policies\RSA\RSA Desktop\Local Authentication Settings
Value NameFailOpen
Value TypeREG_DWORD
Value1
Disable Policy:
Registry HiveHKEY_LOCAL_MACHINE
Registry PathSOFTWARE\Policies\RSA\RSA Desktop\Local Authentication Settings
Value NameFailOpen
Value TypeREG_DWORD
Value0

Select whether or not to challenge an unknown user.




  1. Challenge
    Registry HiveHKEY_LOCAL_MACHINE
    Registry PathSOFTWARE\Policies\RSA\RSA Desktop\Local Authentication Settings
    Value NameUnknownUserChallenge
    Value TypeREG_DWORD
    Value1
  2. Do not challenge
    Registry HiveHKEY_LOCAL_MACHINE
    Registry PathSOFTWARE\Policies\RSA\RSA Desktop\Local Authentication Settings
    Value NameUnknownUserChallenge
    Value TypeREG_DWORD
    Value0


rsa_authentication_agent.admx