RSA SecurID tokens with RSA Authentication Manager support offline authentication. For more information, see the Offline Authentication Policy page in the RSA Authentication Manager online help. The offline authentication feature, if configured, allows users to authenticate with their tokens when their computers are not connected to the network. You can optionally allow Authentication Manager to automatically provide the user's Windows Login Password with a successful SecurID authentication. Offline authentication security is explained in detail in the KB article 000025725 - Questions on the security of offline authentication data in the RSA SecurID Authentication Agent for Microsoft Windows.
I see your post has been tagged for the RSA Cloud Authentication Service . However, that service does not directly support offline authentication, because it is typically used to protect applications which must be accessed across the network - not for Windows login - so allowing authentication offline would not make sense. In addition, the Cloud Authentication Service does not require Agents to be installed in applications, so there is no Agent to store a set of downloaded token codes.
However, if you have a specific business application in mind where you think offline authentication would be useful for the RSA Cloud Authentication Service, such as when you have enabled Cloud Authentication Service users to access resources protected by RSA SecurID, we recommend posting that as a suggestion on the RSA Ideas for the RSA SecurID® Suite page.
