How to Restrict of Active Tokens per User on RSA Authentication Manager.
2 years ago
Originally Published: 2019-08-26
Article Number
000041165
Applies To
RSA Product Set: SecurID
RSA Product/Service Type: Authentication Manager
RSA Version/Condition: 8.X
Issue
How to change the limit for maximum number of active SecurID tokens allowed per user. The default limit is three active tokens for each user.
Resolution
Procedure:

1. Log on to the appliance using an SSH client.
2. Change directories:

 cd /opt/rsa/am/utils

3. Run one of the following commands:

a) To set the limit for active tokens per user, type the following, and then press ENTER:

./rsautil store -a add_config auth_manager.admin.maximum_usable_tokens <1> GLOBAL 501

where <1> is an integer from 1 to 3 that specifies the maximum number of active tokens per user. For values outside the range [1,3], Authentication Manager uses the default limit of three active tokens.

b) To change the limit after setting it for the first time, type the following, and then press ENTER:

./rsautil store -a update_config auth_manager.admin.maximum_usable_tokens <1> GLOBAL 501

where <1> is an integer from 1 to 3 that specifies the maximum number of active tokens per user. For values outside the range [1,3], Authentication Manager uses the default limit of three active tokens.

4. When prompted, enter your Operations Console administrator User ID, and press ENTER.

5. When prompted, enter your Operations Console administrator password, and press ENTER.

6. Restart all Authentication Manager services on the primary instance and all replica instances:

cd /opt/rsa/am/server

./rsaserv restart all

 
Notes
Refer  How to stop, start and restart RSA Authentication Manager 8.x services
Also, the limit for assigned tokens can only be changed to either 1 or 2 from the default value 3.

Related Articles

Trending Articles

Don't see what you're looking for?