This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements

SecurID® Discussions

Browse the SecurID discussion board to get product help and collaborate with other SecurID users.
EdHumes
Contributor
Contributor
‎2016-07-19 02:44 PM

Generate QR codes for multiple device types

We've been deploying new soft tokens to user through either an STID file or with the CT-KIP method and the self-help console. While that is working for small groups of people at a time it is much more manual and labor intensive than we'd like since we first have to determine if the user has an android or IOS device. This does not bode well for an upcoming expiration of about 800 hardware tokens.

 

It appears that all of the methods including CTF require the administrator to know either the type of device or even the serial number. Is there a method where we can generate these regardless of what type of mobile device the recipient has?

Labels (1)
Labels
0 Likes
Reply
10 Replies
Michiel
New Contributor
New Contributor
‎2016-07-19 06:43 PM

Have you already tried scanning an 'android code' on an iOS device (or vice versa)? To be honest, I haven't tried myself either, but I assume there would be a difference as otherwise that switch for the command line utility would have been obsolete? Just a guess! Curious to your findings

0 Likes
Reply
JaneDing
Employee
Employee
‎2016-07-20 02:49 AM

When creating a token profile, you can select Generic AES 128. It can be used on all kinds of devices/platform including ios, android, desktop, etc. But only file based and CT-KIP delivery methods are available under Generic AES 128, because only these 2 methods are applicable to all devices/platform.

0 Likes
Reply
JamesNichols
New Contributor
New Contributor
In response to JaneDing
‎2021-11-16 08:37 AM

This does not work. We created a new soft token profile with Generic AES 128 selected to go along with the file-based method and could not distribute the file to a iOS Phone and Windows Desktop client to work together as one license.

0 Likes
Reply
StevenSpicer
Valued Contributor Valued Contributor
Valued Contributor
‎2021-11-16 09:10 AM

"self-help console" - do you mean the Self Service Console (SSC) built into Authentication Manager?  Have you created software token profiles for each of iOS, Android and Windows, and enabled them in the SSC?  The end user should be able to select the correct type.

0 Likes
Reply
JamesNichols
New Contributor
New Contributor
In response to StevenSpicer
‎2021-11-16 09:48 AM

No. simply assigning a single license to a user with a windows desktop and cell phone consuming only one rsa license.


0 Likes
Reply
StevenSpicer
Valued Contributor Valued Contributor
Valued Contributor
In response to JamesNichols
‎2021-11-16 09:53 AM

That DOES only consume one license. It uses two tokens, but only one license.
0 Likes
Reply
JamesNichols
New Contributor
New Contributor
In response to StevenSpicer
‎2021-11-16 10:02 AM

we could not get that feature to work with assigning/distributing a single soft token profile to multiple devices configured with Generic AES 128, and Issued the token as an .sdtid token file. The rsa link below does not provide much information.

 

https://community.rsa.com/t5/securid-access-knowledge-base/how-to-install-one-rsa-securid-software-token-on-multiple/ta-p/3813

0 Likes
Reply
StevenSpicer
Valued Contributor Valued Contributor
Valued Contributor
In response to JamesNichols
‎2021-11-16 10:19 AM

If you insist on installing the same token on multiple devices you must use an sdtid files or a CTF link. Since they allow repeated installations, both are insecure compared to CT-KIP delivery, and you must take steps to keep the file/link out of unauthorized hands.
0 Likes
Reply
JamesNichols
New Contributor
New Contributor
In response to StevenSpicer
‎2021-11-16 02:28 PM

Do you have the rsa link enabling a single soft token for multiple devices with ct-kip delivery to share?

0 Likes
Reply
© 2023 RSA Security LLC or its affiliates. All rights reserved.