000032872 - How to generate a token statistics report from the command line for RSA Authentication Manager 8.x

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support on Jul 29, 2019
Version 3Show Document
  • View in full screen mode

Article Content

Article Number000032872
Applies ToRSA Product Set: SecurID
RSA Product/Service Type:  Authentication Manager
RSA Version/Condition: 8.x
IssueThis article explains how to generate token statistics report for RSA Authentication Manager 8.x via the command line.
ResolutionFollow the steps to generate a token statistics report via command line that includes unassigned tokens, unexpired tokens, unassigned and disabled tokens and unassigned and enabled tokens.
  1. Launch an SSH client, such as PuTTY.
  2. Login to the primary Authentication Manager server as rsaadmin and enter the operating system password.

Note that during Quick Setup another user name may have been selected. Use that user name to login.

  1. Navigate to /opt/rsa/am/utils.
  2. Run the command ./rsautil manage-secrets -a get com.rsa.db.dba.password to get the database password.

login as: rsaadmin
Using keyboard-interactive authentication.
Password: <enter operating system password>
Last login: Fri Jul 10 11:56:49 2015 from dh7u02ua3361dr7.uhc.com
RSA Authentication Manager Installation Directory: /opt/rsa/am
rsaadmin@securid:~> cd /opt/rsa/am/utils/
rsaadmin@securid:/opt/rsa/am/utils> ./rsautil manage-secrets -a get com.rsa.db.dba.password
Please enter OC Administrator username: <enter Operations Console administrator user name>
Please enter OC Administrator password:<enter Operations Console administrstor password>
com.rsa.db.dba.password: EVPGOtr6Er2CFqP9g9W3yOTtzIHMHt

The appropriate method would be to create a read-only user for database access. Remember to run the commadn with the appropriate Operations Console administrative account details.

  1. Using a file transfer app such as WinSCP, copy the attached count_tokens.sql to /opt/rsa/am/utils.
  2. In /opt/rsa/am/utils folder run the following command to generate a CSV output file using SQL script called count_tokens.sql: 

/opt/rsa/am/pgsql/bin/psql -h localhost -p 7050 -d db -U rsa_dba -A -F , -X -t -f count_tokens.sql -o count_tokens.csv

  1. When prompted, enter the password obtained from step 4.
  2. Review the file count_tokens.csv.
NotesThe SQL statements in the file count_tokens.sql are counting the am_token table rows under certain conditions to obtain results.