The User Dashboard provides a consolidated view of authentication data for a single user, allowing you to identify and troubleshoot issues.
You can view the User Dashboard using:
Quick Search on the Home page. Quick User Search allows you to search by last name, user alias, or User ID. You can search for users in one identity source or across all identity sources within your scope. For instructions, see Use Quick Search to View the User Dashboard for a User.
You can use the User Dashboard to perform these tasks for a particular user.
Note:Your ability to view or perform tasks in the User Dashboard depends on your license and administrative permissions. These features apply to hardware tokens and software tokens. Some features are unavailable for RSA SecurID Authenticate Tokencodes. For more information, see RSA SecurID Authenticate Tokencodes.
Clear and set temporary on-demand authentication PIN
You might clear a user's ODA PIN when the PIN is compromised, forgotten, or when your company policy requires the PIN change. You must always set a temporary PIN when you clear a user's PIN because ODA requires a PIN.
The user must change a temporary PIN the first time it is used.
You can require users to change their passwords if the password is suspected of being compromised. If a user's identity source is the internal database, you can force the user to change the password the next time the user logs on.
User Dashboard Components User Dashboard Components
The User Dashboard contains the following components.
Dashboard Quick SearchDashboard Quick Search
Use the Quick Search field on the User Dashboard to search by last name, user alias, User ID, or token serial number. If you search by token serial number and the token is already assigned, the User Dashboard displays. If the token is not assigned, the SecurID Tokens View page displays.
User ProfileUser Profile
You can edit, disable, or unlock a user’s account. Disabling a user removes the user's ability to authenticate and suspends the user’s account privileges. You can only disable a user whose identity source is the internal database. You can unlock a user who has violated the lockout policy or self-service troubleshooting policy for the user’s security domain. You can also manage a user’s authentication settings.
User Group MembershipUser Group Membership
You can view a user’s membership to user groups. You can add a user to one or more groups (maximum of 25).
Users in the same user group can access restricted agents. Users can be managed as part of the group. You can also remove users from user groups that are stored in the identity sources. This action does not delete the user's data from the identity source.
You can view a user’s authentication activity through the User Dashboard in real time. You can customize the information displayed. A maximum of 50 records can be shown.
Additionally, you can view:
Log entries for real-time authentication activity over the past seven days for one user
Time of activity, result of activity, and description of activity
Assigned SecurID Tokens Assigned SecurID Tokens
You can assign or replace a hardware or software token by searching for a token across all security domains within your scope. After you assign a software token, you are prompted to distribute the token. You can manage all aspects of a user’s hardware or software token status.
Accessible Agents Accessible Agents
You can view up to 50 restricted and unrestricted agents the selected user can access within your administrative scope. For restricted agents, the user can authenticate within the designated access times. You can search these agents by hostname.
On-Demand AuthenticationOn-Demand Authentication
You can view and manage information for that the user such as whether the user is enabled for on-demand authentication (ODA), the tokencode destination, PIN status, and tokencode expiration date.