Unable To Delete Unassigned Expired Token
Originally Published: 2016-01-25
Article Number
Applies To
RSA Product/Service Type: SecurID Appliance
RSA Version/Condition: 8.1.0
Platform: Linux
O/S Version: SUSE Linux
Issue
Cause
Resolution
Solution 1 : If the issue is seen for a single token, perform the following steps
rsaadmin@am8p:~> cd /opt/rsa/am/utils
rsaadmin@am8p:/opt/rsa/am/utils> ./rsautil manage-secrets -a get com.rsa.db.dba.password
Please enter OC Administrator username: ocadmin
Please enter OC Administrator password: *********
com.rsa.db.dba.password: GrcvNN2FUAsWjyPfhaIsSWvjvZhvtN
cd ../pgsql/bin
rsaadmin@am8p:/opt/rsa/am/pgsql/bin> ./psql -h localhost -p 7050 -d db -U rsa_dba
put the password that appeared
And Query we will run:
select * from rsa_rep.am_ctkip_authcode where token_serial_num like '000112259786';
Delete from rsa_rep.am_ctkip_authcode where token_serial_num like '000112259786';
Solution 2 : If the issue is seen for several random tokens, perform the following steps
rsaadmin@am8p:~> cd /opt/rsa/am/utils
rsaadmin@am8p:/opt/rsa/am/utils> ./rsautil manage-secrets -a get com.rsa.db.dba.password
Please enter OC Administrator username: ocadmin
Please enter OC Administrator password: *********
com.rsa.db.dba.password: GrcvNN2FUAsWjyPfhaIsSWvjvZhvtN
cd ../pgsql/bin
rsaadmin@am8p:/opt/rsa/am/pgsql/bin> ./psql -h localhost -p 7050 -d db -U rsa_dba
put the password that appeared
select token_serial_num from am_ctkip_authcode where is_token_assigned='t' and token_serial_num IN (select serial_number from am_token where token_shutdown_date<='2017-12-31 00:00:00');
Delete from am_ctkip_authcode where is_token_assigned='t' and token_serial_num IN (select serial_number from am_token where token_shutdown_date<='2017-12-31 00:00:00');
Note : Please Backup RSA Database before performing these steps
Related Articles
Generic REST Collector fails with 'Access token has expired' error in RSA Identity Governance & Lifecycle Number of Views Generating a report to list unassigned tokens in RSA Authentication Manager 8.x Number of Views Groups are unassigned in User Access Review for RSA Identity Governance and Lifecycle Number of Views Enable unassigned RSA SecurID tokens in bulk for RSA Authentication Manager 8.1 SP1 or later Number of Views Unassign a User Alias from a RADIUS Profile Number of Views
Trending Articles
RSA Authentication Manager Upgrade Process RSA Release Notes for RSA Authentication Manager 8.8 RSA RADIUS Server service failed to start in the RSA Authentication Manager 8.1 Operations Console Microsoft Entra ID External MFA - Relying Party Configuration Using OIDC - RSA Ready Implementation Guide RSA Release Notes: Cloud Access Service and RSA Authenticators
Don't see what you're looking for?
