000011577 - Set emergency access expiration with minutes/seconds granularity via admin toolkit API

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000011577
Applies ToAuthentication Manager 6.x
Sd_EmergencyAccessFixed
Sd_EmergencyAccessOTP
IssueSet emergency access expiration with minutes/seconds granularity via admin toolkit API
Only the date and/or hours until expiration can be specified via these APIs
The Authentication Manager UI allows setting an expiration time that includes minutes and seconds.
ResolutionAuthentication Manager version 6.1.2 Build 186 and higher includes a way to configure the admin toolkit to treat these APIs' lifeTime parameter as number of seconds until expiration rather than the documented number of hours.

Method 1:  Set the environment variable
RSA_EAOTP_SECONDS_RESOLUTION (any value).  This environment variable must be available to the Authentication Manager application so will affect any application that uses the admin toolkit.

Method 2:  Use the API call Sd_SetSymbols to set symbol "5" to "T".  Only affects the current API script or program.   For example in a Tcl script:

...
Sd_SetSymbols -s "5" "T"
#set token into lost mode with password 6789 with an expiration of 600 seconds
Sd_EmergencyAccessFixed 000109401318 6789 600
...



Legacy Article IDa53124

Attachments

    Outcomes