This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements

SecurID® Discussions

Browse the SecurID discussion board to get product help and collaborate with other SecurID users.
TracyPentak
New Contributor
New Contributor
‎2017-03-30 03:36 PM

How to report on last date pin was changed or set date?

We need to create a report to reflect the last pin change date.

 

Is there a Script or SSH command we can run that will produce a report that shows:  FN, LN, Email, Last Auth Date, Security Domain, Identity Source and Last Pin Change\Set date.   I can not find an out of the box report that shows us when the pin was last changed.    Need information for everyone in a Security Domain that has a token (regardless of last logon date).

Any help would be greatly appreciated.  Thank you.

 

 

 

Labels (1)
0 Likes
Reply
3 Replies
EdwardDavis
Employee
Employee
‎2017-03-31 08:32 AM

In the authentication activity report, the REASON column will state Pin Change Accepted when it is changed.

 

If the user is using the old pin+tokencode

and the system is going to ask to change pin, or an Admin set it

to force a pin change, it will show Passcode accepted, New PIN required

0 Likes
Reply
TracyPentak
New Contributor
New Contributor
In response to EdwardDavis
‎2017-03-31 09:43 AM

Thank you, however I need to pull a report for an entire Security Domain (25,000) users on a monthly basis. 25,000 out of 55,000 in an activity log report was a little more cumbersome than I was hoping for.  Any other options?

0 Likes
Reply
TracyPentak
New Contributor
New Contributor
In response to EdwardDavis
‎2017-04-02 08:05 AM

Thank you, but this needs to include more than just users who have logged on recently.  We recently migrated another dept. (an entire Security Domain with 25,000 users) and we are trying to figure out how many users will be immediately affected if we implement a pin policy they currently are exempt from.  Therefore, we need the last pin set or change date for all users with a token, not just those who have recently logged on from the authentication logs.  Additionally, we do not want to put 25,000 users who have never been required to change their pin into new pin mode and force 25,000 users to change at the same time.

 

I'm looking for a script or SSH command we can run that will produce FN, LN, Email, Last Auth Date, Security Domain, Identity Source and Last Pin Change\Set date.   Thanks.

0 Likes
Reply
© 2023 RSA Security LLC or its affiliates. All rights reserved.