This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements

SecurID® Discussions

Browse the SecurID discussion board to get product help and collaborate with other SecurID users.
JeffreyLoke
Beginner
Beginner
‎2020-03-16 02:28 PM

How to get an accurate active user license count in RSA Authentication Manager

Jump to solution

Warning: Your system has exceeded 95% of the licensed user limit.


But we are only using 57 out of 80 tokens

 

How do we clean this up?

0 Likes
Reply
1 Solution

Accepted Solutions
GeorgeMaher
Occasional Contributor Occasional Contributor
Occasional Contributor
‎2020-03-16 02:40 PM

Jump to solution

You can have the accurate license count from the article below:

000016912 - Reporting on RSA Authentication Manager 8.x users with On-Demand Token, a fixed passcode or a hardware/softw… 

 

This is a SQL file which list all the the active users that has ( tokens, ODA, RBA. fixed passcode ) , all you need to do is to follow the steps mentioned in the article

 

hint: any user has 3 tokens which is the limit, will be counted as 1 user with assigned authenticator

View solution in original post

0 Likes
Reply
3 Replies
GeorgeMaher
Occasional Contributor Occasional Contributor
Occasional Contributor
‎2020-03-16 02:40 PM

Jump to solution

You can have the accurate license count from the article below:

000016912 - Reporting on RSA Authentication Manager 8.x users with On-Demand Token, a fixed passcode or a hardware/softw… 

 

This is a SQL file which list all the the active users that has ( tokens, ODA, RBA. fixed passcode ) , all you need to do is to follow the steps mentioned in the article

 

hint: any user has 3 tokens which is the limit, will be counted as 1 user with assigned authenticator

0 Likes
Reply
EdwardDavis
Employee
Employee
In response to GeorgeMaher
‎2020-03-16 02:44 PM

Jump to solution

Also note, run an identity source 'cleanup unresolvable users', and preview if the system still has users who used to be in LDAP and may still have an authenticator assigned. If you delete or remove someone from LDAP and they still have a token assigned, the system still holds the license and token for that user, and this can eat up license slots if not cleaned up.

0 Likes
Reply
GeorgeMaher
Occasional Contributor Occasional Contributor
Occasional Contributor
‎2020-03-16 02:46 PM

Jump to solution

Also, if you are sure that you do not have any fixed passcodes or any ODA/RBA enable, and the above article is not showing the same number mentioned in

Security console > setup > license > license status > users with assigned authenticators

 

That might be the unresolvable users ( which are users who were deleted from the Ad but not yet deleted fro the Am and they have tokens ) 

 

you can clean them up from > Security console > setup > identity source > cleanup unresolvable users > remove the grace period > next 

 

if there are users, please remove them and check again 

0 Likes
Reply
© 2023 RSA Security LLC or its affiliates. All rights reserved.