Token Policy User PIN Complexity
Originally Published: 2019-11-22
Article Number
Applies To
RSA Product/Service Type: Authentication Manager
RSA Version/Condition: 8.4.0
Platform: null
Platform (Other): null
O/S Version: null
Product Name: null
Product Description: null
Resolution
[SERGIO] You should create a password dictionary that contains words that cannot be used as passwords or PINs. After that, assign the password dictionary to the Token Policy. Please let me provide the steps:
1) Create a text file having all PIN Numbers that will not be accepted. For instance:
123456
654321
1111111
222222
2) Add the Password Dictionary to Authentication Manager Server.
In the Security Console, click Setup > System Settings > Under Authentication Settings, click Password Dictionary.
Note: AM Servers shows Password Dictionary but the dictionary can be applied for PIN Numbers as well.
3) Assign the Password Dictionary to the Token Policy.
Use the search fields to find the token policy that you want to edit > From the search results, click the token policy that you want to edit > From the context menu, click Edit > Under "SecurID PIN Format" select the dictionary from the Excluded Words Dictionary drop-down list.
Related Articles
Access Manager 6.1 - aserver reports passwords are expired when password policy shows them as valid. Number of Views Password Lockout Examples Number of Views Self-Service Troubleshooting Policy Number of Views Lockout Policy Number of Views Password Policy Number of Views
Trending Articles
RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide RSA Authentication Manager 8.9 Release Notes (January 2026) How to install the jTDS JDBC driver on WildFly for use with Data Collections in RSA Identity Governance & Lifecycle RSA Authentication Manager 8.8 Setup and Configuration Guide Artifacts to gather in RSA Identity Governance & Lifecycle
Don't see what you're looking for?
