You can run a command-line utility that restricts the number of tokens that can be assigned to a user.
For instructions, see Restrict the Number of Active Tokens per User.
In the Security Console, click Identity > Users > Manage Existing.
Use the search fields to find the user to whom you want to assign tokens.
From the search results, select the checkboxes next to the users to whom you want to assign tokens.
From the Action menu, click Assign SecurID Tokens.
From the list of available RSA SecurID tokens on the Assign to Users page, select the checkbox next to the software tokens that you want to assign to the users. Remember which tokens you assign so you can deliver them later.
Note: The number of selected tokens must equal the number of selected users.
After you finish
Deliver the tokens using one of the following methods:
For file-based provisioning, save a software token to a file and electronically deliver it to the user's device.
For instructions, see Distribute Multiple Software Tokens Using File-Based Provisioning.
For the CTF protocol, you generate a URL, which you deliver to the user.
For instructions, see Distribute Multiple Software Tokens Using Compressed Token Format (CTF).
For the CT-KIP protocol, use dynamic seed provisioning to deploy a software token on a user's device.
For instructions, see Distribute Multiple Software Tokens Using Dynamic Seed Provisioning (CT-KIP).