How to set RSA ACE/Server user password lifetime to greater than 3 years
Originally Published: 2004-04-06
Article Number
Applies To
RSA ACE/Server creates use passwords (via host or remote admin) with a death date of current time + 3 years
RSA ACE/Server Administration API can set the password lifetime of a new user to up to 10 years
Issue
Resolution
#!./tcl-sd
#connect to Server
puts [Sd_ApiInit "" "" 1]
#add user tuser, password "1234" with 10 year lifetime
set tokSerial [Sd_AssignPassword user test tuser /bin/sh 1234 3653 0]
puts "Created password token $tokSerial"
Sd_ApiEnd
NOTE: password lifetime is a different concept than the System parameter "passwords expire in". The System parameter controls how long a password can be used until the user is requested to change it during an authentication. Password lifetime, on the other hand, defines how long before a password must be updated by administrator action.
Related Articles
Assigned token list shows tokens assigned to <UNKNOWN> for RSA Authentication Manager Number of Views Immediate Next Token Code (NTC) error received for some user logins in RSA Authentication Manager 8.x Number of Views How users can generate a temporary emergency access tokencode from RSA Authentication Manager 8.x Self-Service Console Number of Views Assign a replacement RSA SecurID token to a user in RSA Authentication Manager Number of Views How to Configure Palo Alto Global Protect VPN to support RSA AM to be LDAP + Passcode Number of Views
Trending Articles
Downloading RSA Authentication Manager license files or RSA Software token seed records RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide Quick Setup Guide - Passwordless Authentication in Windows MFA Agent for Active Directory Mandatory Certificate Upgrade Required by 6th October 2025 for RSA MFA Agent for PAM, RSA MFA Agent for Apache, and Third … RSA Authentication Manager 8.9 Release Notes (January 2026)
Don't see what you're looking for?
