Article Number
000039072
Applies To
RSA Product Set: SecurID
RSA Product/Service Type: Authentication Agent for Web: IIS
Issue
The RSA Authentication Agent for Web: IIS protected login page displays the following message:
Your Passcode is your PIN + the number displayed on your token (the Tokencode)
Image description
This message may not be appropriate for all users and can lead to confusion and increased calls to the help desk. Users with an RSA SecurID hardware token do enter their PIN followed by tokencode into the login page to authenticate. In this case, the display text is correct. Users with an RSA SecurID software token enter the PIN into the token application first to generate the passcode. They then enter the passcode into the login page. Updating the message text can help users authenticate without needing technical support.
Resolution
The useridandpasscodemanual.htm file controls the display text of the login page. Editing this file allows the text to be modified to meet organizational requirements.
Follow the steps below to change the display text:
- On the server on which the RSA Authentication Agent for Web: IIS is installed, go to the install directory. Typically, this is C:\Program Files\RSA Security\RSAWebagent\templates.
Image description
- Make a copy of the useridandpasscodemanual.htm file and store in the same location.
- Open useridandpasscodemanual.htm in a text editor. The text of Your Passcode is your PIN + the number displayed on your token (the Tokencode), shown in bold below:
<TD class="field"><INPUT TYPE=PASSWORD ID="passcode" NAME="passcode" VALUE="" MAXLENGTH=16 AUTOCOMPLETE="OFF" ONKEYPRESS="parent.handleKeyPressed(event)" style="width:155px;"><br /><span style="color: #666;">Your Passcode is your PIN + the number displayed on your token (the Tokencode)</span>
- Replace the default text with the text that best works for your organization. For example, if you need the login UI page to display the message "Your Passcode is the code displayed on your token," then replace the above message to contents as per organizational requirement.
<TD class="field"><INPUT TYPE=PASSWORD ID="passcode" NAME="passcode" VALUE="" MAXLENGTH=16 AUTOCOMPLETE="OFF" ONKEYPRESS="parent.handleKeyPressed(event)" style="width:155px;"><br /><span style="color: #666;">Your Passcode is the code displayed on your token</span>
- Save and close the file.
- Perform an IIS reset for the change to take effect.
- The RSA Authentication Agent for Web: IIS login page now displays the customized text on the protected webpage:
Image description
Notes