An administrator has a requirement to generate a report on PIN complexity.
RSA Authentication Manager stores the PIN in an encrypted state and there is no method to view or report on the PINs stored in the authentication manager database. Administrators only have the option to clear a PIN or define the PIN complexity via the token policies for Security Domains defined in the authentication manager deployment.
Token policies determine RSA SecurID PIN lifetime and format, and fixed passcode lifetime and format. They are assigned to security domains, and apply to all tokens assigned to users managed by a given security domain.
Token policies also determine how to handle users or unauthorized people who enter series of incorrect passcodes.
When you edit a token policy, you can change information such as the name of the token policy, minimum and maximum lifetime information, and character requirements. You can also designate the token policy as the default policy for a deployment.
Managing a Token Policy
- In the Security Console, click Authentication > Policies > Token Policies > Manage Existing.
- Use the search fields to find the token policy that you want to edit.
- From the search results, click the token policy that you want to edit.
- From the context menu, click Edit.
- Make the necessary changes to the token policy.
- Click Save.
