000016573 - AM 7.1X/APP 3.0: rsautil sync-tokens command line utility displays message  'No tokens found to process.'

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000016573
Applies ToRSA Authentication Manager 7.1X/APP 3.0.X
IssueAM 7.1X/APP 3.0: rsautil sync-tokens command line utility displays message, "No tokens found to process."

When running the command line utility

    rsautil sync-tokens 

The following curious message is displayed, even though tokes are certainly present:

*** No tokens found to process.                                  <none>

Causemultiple realms or security domains are in use
tokens have been assigned to unresolvable user(s)

When using mutiple realms or security domains, and are running rsautil sync-tokens interactively from the command line, pay special attention to the prompt:

Enter the base security domain name for recursive search [(none)]:

You must enter a valid realm/security domain when using multiple realms or security domains.  You cannot use the default of none.

If you are not using multiple realms/security domains, check for tokens assigned to a user named: <unknown>.  This can be done by running the Users with Tokens report in the security console under "Reporting" 

For these <unknown> users with tokens, first unassign the token.
Run a backup, then an Identity Source cleanup job (Setup->Identity Sources->Schedule Cleanup)

Legacy Article IDa60828