000013437 - Unassigning the token from within the Appliance administration gui fails with the error 'Error: Sd_UnassignToken Error Failed to delete user'

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 22, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000013437
Applies To

RSA Authentication Manager


Appliance
IssueUnassigning the token from within the Appliance administration gui fails with the error "Error: Sd_UnassignToken Error Failed to delete user"
Cannot unassign token
Deletion of the user fails
Cause

The appliance administration web interface uses a function called Sd_Unassigntoken which has several limitations. The function will fail to unassign the token if any of the following conditions are true:

1. The user is an admin.
2. The user has extension data.
3. The user is activated on an agent host.
4. The user is a member of a group.

Resolution

a. If the user is an admin, remove his administrative role and make him a regular user.
b. If the user has an extension data, remove the same.
c. If the user is activated on agent host, inactivate the user.
d. If the user is a member of a group, remove his group membership.

Now, you can unassign the token. Then delete the user.


Alternatively tokens can always be unassigned by not using the Appliance Administration gui which uses the 'Sd_Unassigntoken' function but by clicking on 'Advanced' - 'Remote Desktop' and starting RSA Authentication Manager Host Mode Administration, then clicking on 'Token' - 'Unassign Token'
Legacy Article IDa43496

Attachments

    Outcomes