Clear a User's On-Demand Authentication PIN
You might clear a user's on-demand authentication (ODA) PIN when the PIN is compromised, forgotten, or when your organization has a policy that requires the PIN change. You must always set a temporary PIN when you clear a user's PIN because ODA requires a PIN.
The user must change a temporary PIN the first time it is used.
Procedure
In the Security Console, click Identity > Users > Manage Existing.
Use the search fields to find the user for whom you want to set a temporary PIN.
Click the user.
From the context menu, select SecurID Tokens.
Under On-Demand Authentication, for Associated Pin, select Clear existing PIN and set a temporary PIN for the user.
Enter a temporary PIN.
Click Save.
Securely communicate the temporary PIN to the user.
Related Concepts
Related Articles
How do I reset the On-Demand Authentication (ODA) PIN for my RSA Community account? Number of Views Clear a User's On-Demand Authentication PIN in the User Dashboard Number of Views How can I change the On-Demand Authentication (ODA) PIN for my RSA Community account? Number of Views RSA Authentication Manager On-Demand Authentication (ODA) failing with the following error: User provided incorrect On-De… Number of Views Citrix Netscaler failing to properly handle New PIN Mode and On-Demand Authentication (ODA) when using RADIUS with RSA Aut… Number of Views
Trending Articles
Quick Setup Guide - Passwordless Authentication in Windows MFA Agent for Active Directory RSA Authentication Manager 8.9 Release Notes (January 2026) RSA Governance & Lifecycle 8.0.0 Administrators Guide RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide RSA MFA Agent 2.5 for Microsoft Windows Installation and Administration Guide
