|Applies To||RSA Product Set: SecurID|
RSA Product/Service Type: Authentication Manager, RSA SecurID Tokens
|Issue||Many support cases are opened related to issues where RSA Authentication Manager licenses have been purchased, but not RSA SecurID tokens, or vice versa. This causes issues in a deployment because there are either not enough available licenses to assign more tokens or not enough tokens available to assign to new users, even after the license is increased.|
This article provides detail on the differences between RSA SecurID tokens (both hardware and software) and a user license for RSA Authentication Manager and what must be purchased to increase the number of users with tokens in your deployment.
|Resolution||When making a new purchase for either RSA SecurID hardware or software tokens or additional user licenses, be mindful that tokens and licenses are separate purchases and may require you to specifically state what you are trying to order.|
|Notes||The RSA Authentication Manager license shows the maximum number of users that can have tokens assigned. That being said, despite the Limit value for a license, there can be millions of users in the RSA Authentication Manager database and millions of RSA SecurID token seeds imported. The Actual value increases by one when one or more authenticators are assigned to a user.|
Authenticators can be any combination of hardware tokens, software tokens, RBA/ODA, and fixed passcode (maximum of one fixed passcode), with a maximum of three per user.
RSA Authentication Manager licenses are imported into the system using Setup > Licenses > Add New.
RSA SecurID token seed records are added to the deployment by browsing to Authentication > SecurID Tokens > Import Tokens Job > Add New.
For information about decrypting an RSA SecurID token pack so it can be imported into the Security Console, go to 000029318 - Information on the RSA SecurID protected delivery program and how it will impact the token record media decryption process for customers.