You can provide users with an offline emergency passcode to use under the following conditions:
The user's RSA SecurID Token is unavailable, or the user forgot his or her PIN.
The user's Windows device cannot contact the Authentication Manager server through the network.
Offline emergency passcode cannot be used to access resources protected by the Cloud Authentication Service.
Before you begin
Confirm the following:
The user’s security domain allows offline authentication and permits the user to download offline emergency access tokencodes.
The user has authenticated to an agent that supports offline authentication and the agent has downloaded days of offline authentication data.
In the Security Console, click Identity > Users > Manage Existing.
Use the search fields to find the user who needs an offline emergency passcode.
From the search results, click the user.
From the context menu, click Manage Emergency Offline Access.
On the Manage Emergency Access Passcodes page, note the Offline Emergency Passcode and its expiration date.
Select Reset Offline Emergency Access Passcode, if you want the user to download a new offline emergency passcode the next time he or she authenticates online. If selected, the new passcode downloads automatically.