|Applies To||RSA Product Set: SecurID|
RSA Product/Service Type: Authentication Manager
|Issue||When listing assigned tokens, some are assigned to <UNKNOWN>.|
This is the correct behavior where an external identity source, such as Active Directory or SunONE Directory Server, is being used and a user was been deleted by the directory server administrator while they still had a token assigned to them.
Authentication Manager will only be aware that a user has been deleted when it queries the identity source and is informed that the user no longer exists. At this point the software will display the token details as <UNKNOWN>.
It is possible to manually unassign the token where needed on an individual basis; however you may also configure a background task to run once a day to check through your entire system and reset any records that it finds in thi state.
Depending on the size of your database and external identity source, think about scheduling this process to run overnight.
|Legacy Article ID||a40837|