000037918 - Error "PIN change failed dictionary check" and authentication fails for a user in new PIN mode in RSA Authentication Manager 8.x

Document created by RSA Customer Support Employee on Sep 16, 2019
Version 1Show Document
  • View in full screen mode

Article Content

Article Number000037918
Applies ToRSA Product Set: SecurID
RSA Product/Service Type: Authentication Manager
RSA Version/Condition: 8.x
IssueFor a user in new PIN mode, the initial passcode is accepted but an attempt to create a PIN fails with the following error:

PIN change failed dictionary check

User-added image

Alternatively, the following error is observed on the RSA Authentication Manager Self-Service Console when a user tries to set a PIN that exists in the password dictionary file:

PIN not allowed. Please try again.

User-added image

CauseRSA Authentication Manager provides the ability to import a password dictionary file through the Security Console  A password dictionary is a text file that contains words that cannot be used as PINs or as passwords. Using a text string defined in this file as a PIN will generate the errors above.

ResolutionTrain end users to use more complex PINs that are not included in the password dictionary file.  See 000037951 - Using a password dictionary file to control PIN criteria for RSA Authentication Manager 8.x for more informaition.
NotesFor more information,