Hi Andrew.

As you may know, VMware does not support any Fling for production use. The documented method is to use this PowerShell script, which as you say also supports RSA SecurID setup.

You can either set up RSA SecurID authentication on Horizon Connection Server or on Access Point. I'm sorry if you were wrongly advised.

We should be able to resolve your problem.

When you specify the RSA sdconf.rec file when doing an Access Point deployment, it does result in Access Point performing a check at startup. This involves communicating with RSA Authentication Manager Server based on the values within sdconf.rec and the IP addresses you specified in the .ini file. If this check fails, then Access Point will not startup correctly. This check must pass.

Assuming that you are using the 2.5.x version of Access Point as shown in the video, I think there are 4 possible reasons why it is failing.

1. You have the IP addresses incorrectly set in the .ini file. If this is a 1 NIC setup then this will be the IP address of Access Point. You specify this IP address twice in the .ini file.

2. RSA Authentication Manager is not accessible from Access Point (at the UDP/IP layer) at startup time. It uses UDP. I know if RSA Authentication Manager is unavailable or a firewall is blocking that two-way UDP traffic it fails. Monitoring network traffic may help here.

3. RSA Authentication Manager is not set up correctly and is rejecting the check. You can usually find this issue by running the live logging on RSA Authentication Manager and looking for errors. You may need to clear node secret on RSA Authentication Manager.

4. Something is wrong with sdconf.rec.

Look at these 4 things. If it is still failing, "private message" me your .INI file.

Mark