000038967 - Change the maximum emergency passcode lifetime assigned by an RSA Authentication Manager Prime Kit Help Desk Admin Portal (HDAP) administrator

Document created by RSA Customer Support Employee on Jun 25, 2020
Version 1Show Document
  • View in full screen mode

Article Content

Article Number000038967
Applies ToRSA Product Set: SecurID
RSA Product/Service Type: RSA Authentication Manager Prime Kit
IssueThe maximum lifetime for an Emergency Access Code assigned by an RSA Authentication Manager Prime Kit Help Desk Admin Portal (HDAP) administrator is 30 days. An RSA Authentication Manager Prime administrator might want to change that to limit the HDAP administrators to a smaller maximum lifetime value. 
ResolutionTo change the value,
  1. Go to <PrimeKit_installation_directory>/configs/hdap/config.
  2. Make a copy of the lap.properties file.
  3. Open the lap.properties file in a text editor.
  4. Locate the following setting in the properties file:

    emergency.access.max.days=30

  5. Update emergency.access.max.days to the preferred value. For example, to set the maximum lifetime for an Emergency Access Code to 5 days, the setting should look like what is shown here:

    emergency.access.max.days=5

  6. Restart the HDAP service for the change to take effect.
Notes
  • The RSA Authentication Manager Prime installation directory will differ from one environment to the other. The administrator should be aware of the installation directory. The subdirectories and file names will not change. 
  • Restarting the service steps will differ from one environment to the other. The administrator should know how to restart services in their environment.

Attachments

    Outcomes