Token Policy User PIN Complexity
Originally Published: 2019-11-22
Article Number
Applies To
RSA Product/Service Type: Authentication Manager
RSA Version/Condition: 8.4.0
Platform: null
Platform (Other): null
O/S Version: null
Product Name: null
Product Description: null
Resolution
[SERGIO] You should create a password dictionary that contains words that cannot be used as passwords or PINs. After that, assign the password dictionary to the Token Policy. Please let me provide the steps:
1) Create a text file having all PIN Numbers that will not be accepted. For instance:
123456
654321
1111111
222222
2) Add the Password Dictionary to Authentication Manager Server.
In the Security Console, click Setup > System Settings > Under Authentication Settings, click Password Dictionary.
Note: AM Servers shows Password Dictionary but the dictionary can be applied for PIN Numbers as well.
3) Assign the Password Dictionary to the Token Policy.
Use the search fields to find the token policy that you want to edit > From the search results, click the token policy that you want to edit > From the context menu, click Edit > Under "SecurID PIN Format" select the dictionary from the Excluded Words Dictionary drop-down list.
Related Articles
Access Manager 6.1 - aserver reports passwords are expired when password policy shows them as valid. Number of Views Password Lockout Examples Number of Views Self-Service Troubleshooting Policy Number of Views Lockout Policy Number of Views Password Policy Number of Views
Trending Articles
Downloading RSA Authentication Manager license files or RSA Software token seed records RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide Quick Setup Guide - Passwordless Authentication in Windows MFA Agent for Active Directory Mandatory Certificate Upgrade Required by 6th October 2025 for RSA MFA Agent for PAM, RSA MFA Agent for Apache, and Third … RSA Authentication Manager 8.9 Release Notes (January 2026)
Don't see what you're looking for?
