Using RSA SecurID Software Token 5.0 for Windows with Citrix non-persistent Xenapp virtual desktops
Originally Published: 2015-10-09
Article Number
Applies To
RSA Product/Service Type: Authentication Manager, RSA SecurID Software Token 5.0 for Windows w
RSA Version/Condition: 8.x
8.x
Issue
The RSA SecurID Software Token 5.0 for Windows token file is removed every time a user logs off the virtual desktop, thus the token files must be stored in a single database accessed by all users.
To create a single database, you must install the desktop application from the msiexec command line, using the SETSINGLEDATABASE property. This property creates a single database in the All Users directory. When the user starts prelogon to the VPN client, for example, the VPN client retrieves a token from All Users.
Resolution
Install a single token database to the default location
- For the standard desktop application, type:
msiexec /qn /i pathname\RSASecurIDToken500.msi /lv c:\install.log SETSINGLEDATABASE=TRUE
- For the RSA SecurID Software Token with Automation, type:
msiexec /qn /i pathname\RSASecurIDTokenAuto500.msi /lv c:\install.log SETSINGLEDATABASE=TRUE
Install a single token database to a non-default location
Using an absolute path with the SETDATABASEDIR property creates a single database instance that is owned by the first user to use the application. The first example specifies an absolute path that begins with the drive letter and a backslash: drive:\. The second example uses the %HOMEDRIVE% Windows environment variable to specify the drive letter that is set in Active Directory.
- For the standard desktop application, type:
msiexec /qn /i pathname\RSASecurIDToken500.msi /lv c:\install.log SETSINGLEDATABASE=TRUE SETDATABASEDIR=c:\LocalDir
- For the RSA SecurID Software Token with Automation, type:
msiexec /qn /i pathname\RSASecurIDTokenAuto500.msi /lv c:\install.log SETSINGLEDATABASE=TRUE SETDATABASEDIR=%HOMEDRIVE%\LocalDir
Notes
Related Articles
SAP connector fails with hostname not found when using a non-default port in RSA Identity Governance & Lifecycle Number of Views Unable to save a Workflow Approval Email Template that contains non-Latin characters in RSA Identity Governance & Lifecycle Number of Views How to use both RSA SecurID Software Token tokens and standard tokens in the same Nortel VPN profile Number of Views VIA L&G What is the meaning of the NONE button in bulk review Number of Views Technical/Business Owner of a Directory cannot edit Application Roles and Entitlements in RSA Governance & Lifecycle Number of Views
Trending Articles
RSA Authentication Manager Upgrade Process RSA Release Notes for RSA Authentication Manager 8.8 RSA RADIUS Server service failed to start in the RSA Authentication Manager 8.1 Operations Console Microsoft Entra ID External MFA - Relying Party Configuration Using OIDC - RSA Ready Implementation Guide RSA Release Notes: Cloud Access Service and RSA Authenticators
Don't see what you're looking for?
