000018114 - How to assign a replacement RSA SecurID token to a user in RSA Authentication Manager

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 3Show Document
  • View in full screen mode

Article Content

Article Number000018114
Applies ToRSA Product Set: SecurID
RSA Product/Service Type: RSA Authentication Manager
IssueA token assigned to a single user or a number of tokens assigned to users are about to expire and require replacement tokens. 
 
CauseTokens are expiring or are due to expire.
ResolutionAn administrative user can use the Online Help in the Security Console.
  1. Select Help > All Help Topics.  
  2. Search on Assign a Replacement Token or Token Replace to display search results on the topic of replacing tokens, which in-turn provides a two procedures for token replacement. 


Replace a Token for a User


Occasionally, you must assign a new token to a user. For example, you must assign a new token to a user whose existing token has been permanently lost or destroyed. A user also needs a new token if his or her current token has expired. Use this procedure to replace tokens with a specific unassigned token.
Replaced tokens are either unassigned or deleted from the deployment, depending on your configuration.

Procedure


  1. In the Security Console, click Authentication > SecurID Tokens > Manage Existing.
  2. Use the search fields to find the tokens that you want to replace.
  3. Select the checkbox for the tokens that you want to replace.
  4. From the Action menu, click Replace SecurID Tokens.
  5. Click Go.
  6. Click the checkbox next to the replacement tokens.
  7. Click Next.
  8. (Optional) Click the checkbox to require the assigned user to set up a new SecurID PIN for the replacement token.
  9. Click Save & Finish.
 

Assign a Replacement Token


You can assign a replacement token to a user if a user’s token has been permanently lost or destroyed, or if the current token has expired.

Procedure


  1. In the Security Console, click Authentication > SecurID Tokens > Manage Existing.
  2. Use the search fields to find the token that you want to replace.
  3. From the search results, click the token that you want to replace.
  4. Click Replace with Next Available Token.
NOTE:  These instructions work for a single token or multiple tokens.
NotesOriginal Resolution for ACE/Server 5.2 and below, Authentication Manager 6.0 and 6.1.
To assign a replacement token to a user, follow these steps:
  1. In Database Administration, point to User > Edit User.
  2. Select the user to whom you want to assign a replacement token.
  3. Click on the token you want to replace, then click Edit Token.
  4. Click Assign Replacement Token.
  5. Type in the serial number of the replacement token, or click Tokens to find the token you want to use.
  6. Select Retain PINs from tokens to be replaced if you want to keep the PIN from the other token.
  7. Click OK.
  8. When the Edit User screen returns, you will see an O in front of the original token and an R in front of the replacement token.
  9. Click OK to leave the Edit User section.
Legacy Article ID4.0.1545604.2470931

Attachments

    Outcomes