Allow a User to Authenticate Without an SecurID PIN

RSA Authentication Manager supports authentication with tokens that do not require an SecurID PIN. To authenticate, instead of entering the PIN followed by the tokencode, the user enters just the tokencode displayed on the token.

Authenticating with just a tokencode is ideal for situations such as software tokens on smart cards that users have to unlock with a PIN or on desktops that users must unlock with a password. In these situations, the PIN or password that unlocks the resource is one of the authentication factors, and the tokencode serves as the second.

You can configure both hardware and software tokens so they do not require a PIN for authentication. You must notify users if you make any change in the user authentication requirement options.

You can perform this procedure for one user or more users.


  1. In the Security Console, click Authentication > SecurID Tokens > Manage Existing.

  2. Use the search fields to find the tokens that you want to configure.

  3. Select the checkbox next to the tokens that you want to configure.

  4. From the Action menu, click Don't Require SecurID PIN.

  5. Click Go.

Related Concepts

SecurID Tokens