Using RSA SecurID Software Token 5.0 for Windows with Citrix non-persistent Xenapp virtual desktops
Originally Published: 2015-10-09
Article Number
Applies To
RSA Product/Service Type: Authentication Manager, RSA SecurID Software Token 5.0 for Windows w
RSA Version/Condition: 8.x
8.x
Issue
The RSA SecurID Software Token 5.0 for Windows token file is removed every time a user logs off the virtual desktop, thus the token files must be stored in a single database accessed by all users.
To create a single database, you must install the desktop application from the msiexec command line, using the SETSINGLEDATABASE property. This property creates a single database in the All Users directory. When the user starts prelogon to the VPN client, for example, the VPN client retrieves a token from All Users.
Resolution
Install a single token database to the default location
- For the standard desktop application, type:
msiexec /qn /i pathname\RSASecurIDToken500.msi /lv c:\install.log SETSINGLEDATABASE=TRUE
- For the RSA SecurID Software Token with Automation, type:
msiexec /qn /i pathname\RSASecurIDTokenAuto500.msi /lv c:\install.log SETSINGLEDATABASE=TRUE
Install a single token database to a non-default location
Using an absolute path with the SETDATABASEDIR property creates a single database instance that is owned by the first user to use the application. The first example specifies an absolute path that begins with the drive letter and a backslash: drive:\. The second example uses the %HOMEDRIVE% Windows environment variable to specify the drive letter that is set in Active Directory.
- For the standard desktop application, type:
msiexec /qn /i pathname\RSASecurIDToken500.msi /lv c:\install.log SETSINGLEDATABASE=TRUE SETDATABASEDIR=c:\LocalDir
- For the RSA SecurID Software Token with Automation, type:
msiexec /qn /i pathname\RSASecurIDTokenAuto500.msi /lv c:\install.log SETSINGLEDATABASE=TRUE SETDATABASEDIR=%HOMEDRIVE%\LocalDir
Notes
Related Articles
SAP connector fails with hostname not found when using a non-default port in RSA Identity Governance & Lifecycle Number of Views Windows desktop machine does not display last logged in user ID with RSA Authentication Agent 7.x for Microsoft Windows Number of Views Unable to save a Workflow Approval Email Template that contains non-Latin characters in RSA Identity Governance & Lifecycle Number of Views Utilize Authentication Manager SDK 8.0 in non-weblogic environment Number of Views Add a Non-Persistent IPv6 Static Route Number of Views
Trending Articles
RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide RSA Authentication Manager 8.9 Release Notes (January 2026) How to install the jTDS JDBC driver on WildFly for use with Data Collections in RSA Identity Governance & Lifecycle RSA Authentication Manager 8.8 Setup and Configuration Guide Artifacts to gather in RSA Identity Governance & Lifecycle
Don't see what you're looking for?
