000021355 - How to programmatically determine if RSA SecurID user is enabled or disabled

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000021355
Applies ToRSA ACE/Server 5.x Administration API
IssueHow to programmatically determine if RSA SecurID user is enabled or disabled
There is no single Administration API call to determine if a user is "enabled"
ResolutionRSA ACE/Server does not have a direct concept of an enabled user. An enabled user is defined as someone who has at least one assigned token that is enabled. The Administration API can be used to help determine if a user has an enabled token as follows:

- Given a default login, use Sd_GetSerialByLogin to retrieve the user's token serial number(s). A user may have up to 3 tokens assigned at any one time.

- Given a token serial number, use Sd_ListTokenInfo to retrieve the token's enabled flag (true/false)
Legacy Article IDa22585