Assigning and Distributing of Tokens using SDTID format via E-mail method - AMBA Utility
Article Number
Applies To
RSA Product/Service Type: Authentication Manager
RSA Version/Condition: 8.x
Issue
- If the super admins need to assign and distribute tokens in bulk to save time.
Resolution
1. Logon to the command line of the RSA Primary instance.
2. Navigate to the /tmp directory e.g. cd /tmp
3. Create a . csv file (input.csv) that includes the action, DefLogin, LastName, Firstname, TokSerial, ReplTokSerial, TokEnabled, IdentitySource. Add the users with the specified tokens
vi /tmp/rsa_assign.csv
Example:
action, DefLogin, LastName, Firstname, TokSerial, ReplTokSerial, TokEnabled, IdentitySource
ATU, rsa_test, rsa, test, , 001915471532, 1, AD1
Note that mandatory fields are: action,DefLogin, TokSerial,ReplTokSerial,TokEnabled, IdentitySource
4. Change the directory to /opt/rsa/am/utils e.g. cd /opt/rsa/am/utils
5. Run the AMBA Utility to fetch the information from the /tmp/rsa_assign.csv
./rsautil AMBulkAdmin -a <Super-admin> -P <Super-admin-Password> --verbose -m 0 -i /tmp/rsa_assign.csv -o AMBAlog.log
./rsautil AMBulkAdmin -a scadmin -P support1'!' --verbose -m 0 -i /tmp/rsa_assign.csv -o AMBAlog.log
6. Open the AMBAlog.log using the cat command (cat AMBAlog.log) and make sure that the result was a success.
7. Open the RSA Primary server's security console and make sure that the token is assigned successfully.
Distributing assigned tokens to users using SDTID format via mail:
1. Navigate to /tmp directory
2. Create a software token profile with a Delivery method: File Based (SDTID)
3. Create a .csv file (rsa_distribute.csv) with the following fields action, TokSerial, TokEnabled, SoftIDParams, IdentitySource, DestinationAddress, DefLogin, DeliveryMethod, SoftTokenProfile, MiscVariable
Example:
action, TokSerial, TokEnabled, SoftIDParams, IdentitySource, DestinationAddress, DefLogin, DeliveryMethod, SoftTokenProfile, MiscVariable
SSD, 001915471532, 1, 0, AD1, rsa_user@lab.com, rsa_test, SMTP, Desktop_Soft_Token New, 4
Note that mandatory fields are: action, TokSerial, TokEnabled, SoftIDParams, IdentitySource, DestinationAddress, DefLogin, DeliveryMethod, SoftTokenProfile,MiscVariable
SSD > Single Software Token Deployment
4. Change the directory to /opt/rsa/am/utils e.g. cd /opt/rsa/am/utils
5. Run the AMBA Utility command to send the token to users via mail
./rsautil AMBulkAdmin -a <Super-admin> -P <Super-admin-Password> --verbose -m 0 -i /tmp/rsa_distribute.csv -o AMBAlog.log -g
./rsautil AMBulkAdmin -a scadmin -P support1'!' --verbose -m 0 -i /tmp/rsa_distribute.csv -o AMBAlog.log -g
6. Make sure that the user has received the token via mail and was able to import it.
