Set an Initial On-Demand Authentication PIN for a User

Document created by RSA Information Design and Development on Jun 13, 2017Last modified by RSA Information Design and Development on Jan 24, 2020
Version 13Show Document
  • View in full screen mode

On-demand authentication (ODA) always requires a PIN to request a tokencode. You can set the initial PIN for the user. The following procedure is for a user who is not yet enabled for ODA.


  1. In the Security Console, click Identity > Users > Manage Existing.

  2. Use the search fields to find the user for whom you want to enable ODA and set an initial PIN.

  3. Click the user.

  4. Select SecurID Tokens.

  5. Under On-Demand Authentication, select Enable User.

  6. For Expiration Date, specify No expiration or the date when on-demand authentication expires.

  7. For Send On-Demand Tokencodes to, specify the delivery method.

  8. For Associated PIN, do one of the following:

    • Select Require user to setup the PIN through RSA Self-Service Console.

    • Select Set initial PIN to, and enter the initial PIN.

  9. Click Save.

  10. If you have set the initial PIN, securely communicate the initial PIN to the user.

Related Concepts

On-Demand Authentication



We want your feedback! Tell us what you think of this page.