This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements

SecurID® Knowledge Base

Find answers to your questions and identify resolutions for known issues with knowledge base articles written by SecurID experts.

Look up a User ID and/or associated Logon Aliases in Authentication Manager 8.x (at the command line)

Article Number

000068080

Applies To

RSA Product Set:  SecurID
RSA Product/Service Type:  RSA Authentication Manager
RSA Version/Condition:  8.6 or later
Platform: Linux

Issue

An administrator has a requirement to lookup user data information in the Authentication Manager database, perhaps where a duplicate user ID is being reported in the Security Console.

Resolution

This knowledge article provides a Linux shell script which can be executed on a primary instance in an Authentication Manager deployment to search user data in the Authentication Manager database to look up User IDs and Logon Aliases. The Linux shell script has a option to enter a token serial number to lookup user information, especially where the assigned user to a token is displayed as <unknown> in the Security Console.

An example of the menu provided by the Linux shell script: 

RSA Customer Support (Asia Pacific) - Wed Feb 1 14:24:17 AEDT 2023

Look up a User ID and associated Logon Aliases in Authentication Manager (AM)

AM hostname : <hostname>

AM version  : 8.n.n.n.n

1) Lookup a User ID
2) Token Serial Number to Lookup a User ID
0) Exit

Please select an option

When the administrator exits the program a log file name is provided. For example:


- log filename : /tmp/userid_logfile_202302011450.log

Please note the Linux shell script must be run with root privileges and requires the Operations Console username and password to read the data stored in the Authentication Manager database.
 

Installation

  1.  Download and copy the attached 'lookupuserid.sh' shell script into the /tmp folder on the primary instance in the Authentication deployment.  Use the procedure at URL https://community.rsa.com/t5/securid-authentication-manager/enable-secure-shell-on-the-appliance/ta-p/630093 to enable secure shell on the Appliance, if needed.  Where secure shell has been enabled, a secure FTP client, such as WinSCP, can be used to copy the shell script into the /tmp folder.
  2. Change the permissions of the lookupuserid.sh so it can be run at the command line: 

chmod 755 /tmp/lookupuserid.sh
Usage
  1. Logon to the Authentication Manger instance with the rsaadmin account, either in an secure shell session or at the local console.
  2. Elevate the privileges of the rsaadmin account using the command:

sudo su -
  1. Navigate to the /tmp folder using the command:

cd /tmp
  1. Run the shell script program using the command:

./lookupuserid.sh
Attachments
0 Likes
Was this article helpful? Yes No
No ratings

In this article

Version history
Last update:
‎2023-03-21 05:16 PM
Updated by:
Administrator Administrator

Related Content

© 2023 RSA Security LLC or its affiliates. All rights reserved.