Article Number
000068094
Applies To
RSA Product Set: SecurID
RSA Product/Service Type: Authentication Manager, SecurID Authenticator 6.x for Windows
Issue
When trying to import SecurID tokens via CT-KIP URL to the SecurID Authenticator 6.x for Windows using the legacy 'Desktop PC 4.x' Software Token Profile, the 'Submit' button in the SecurID Authenticator application is greyed out and unclickable, and the token could not be imported.
Cause
When distributing a token via CT-KIP URL using the legacy 'Desktop PC 4.x' Software Token Profile, the generated URL is in the following format:
https://<Your_AM_Server_FQDN>:7004/ctkip/services/CtkipService
However, the SecurID Authenticator 6.x for Windows accepts the CT-KIP URL in the following format:
securidauthenticator://ctkip?scheme=https&url=<Your_AM_Server_FQDN>:7004/ctkip/services/CtkipService
Resolution
- Click here and download 'SecurID Authenticator 6.0.1 Microsoft Windows Device Definition File'.
- Extract the downloaded file.
- Login to the Security Console, and navigate to Authentication > Software Token Profiles > Add New.
- Create a new name for the Software Token Profile and click on 'Import Device Definition File', then import 'Desktop-Windows-SecurID-Authenticator-swtd.xml' from the extracted file in step 2.
- Click 'Save'.
- You will now notice that when distributing a token using the new Software Token Profile via CT-KIP URL, the URL will be in the correct format for SecurID Authenticator 6.x for Windows, and the SecurID token will be imported successfully.
