Setting up RFID authentication

Make sure that you have the necessary software and hardware of the reader that you are going to use. Install the drivers for the readers and check that the hardware and software are set up properly.

1. If you want to use the GIGA-TMS Proximity Readers PCR300MU, MFR 135 or Altrus RFID reader, open the AccessAgent installer folder. Search for the Reg folder.
2. Open DeploymentOptions.reg. Browse for the corresponding reader.

   For example, if you want to use Altrus RFID Reader, the following information is in the DeploymentOptions.reg:

   ;====== Mifare for Altrus
   ;[HKEY_LOCAL_MACHINE\SOFTWARE\IBM\ISAM ESSO\SOCIAccess\DSPList\Mifare\Devices\ALTRUS]
   ;"DeviceTypeId"="Prolific ALTRUS"
   
   ;[HKEY_LOCAL_MACHINE\SOFTWARE\IBM\ISAM ESSO\SOCIAccess\DSPList\Mifare\Devices\ALTRUS\Interfaces]
   
   ;[HKEY_LOCAL_MACHINE\SOFTWARE\IBM\ISAM ESSO\SOCIAccess\DSPList\Mifare\Devices\ALTRUS\Interfaces\{216DE8B9-FD09-44f3-A39D-B8A6F7A078D8}]
   
   ;[HKEY_LOCAL_MACHINE\SOFTWARE\IBM\ISAM ESSO\SOCIAccess\DSPList\Mifare\Devices\ALTRUS\Parameters]
   ;"CardType"="R_ALTRUS_32"
   
   ;[HKEY_LOCAL_MACHINE\SOFTWARE\IBM\ISAM ESSO\SOCIAccess\DSPList\Mifare\Devices\ALTRUS\Trigger]
   ;"WinInterfaceClass"="{4D36E978-E325-11CE-BFC1-08002BE10318}"

3. Remove all instances of ";" at the beginning of each line except the first line.
4. Save the DeploymentOptions.reg file.
   Note: You can also do this step after AccessAgent is installed. In this scenario, double-click the DeploymentOptions.reg file to apply it. Make sure that you have write permissions on the Windows registry.
5. In AccessAdmin, set the machine policy Authentication second factors supported (pid_second_factors_supported_list) to RFID.

   See the IBM Security Access Manager for Enterprise Single Sign-On Administrator Guide for more details.