How can I set the SecurID pin as the administrator, instead of having the user required to set at next logon?
How can I set the SecurID pin as the administrator, instead of having the user required to set at next logon?
a) One at a time...
Generate an emergency tokencode for the token (as though it was lost) and login somewhere with it, where you know pins can be set up.
Example: Use a different browser and the self-service console login, web tier login, or....or security console login, and choose passcode as login method.
If passcodes are allowed as a login method...login with userid and the emergency code. The emergency code login will ask to set up a pin just like a token would. Set the pin. Inform user of new pin via secure means. All set (if done on security console a pin will get set but a full login will fail for a non-admin).
That pin now belongs to the token the emergency code was generated for.
b) Many at a time...
It can also be done with Auth Manager Bulk Admin where you can input csv files with one or many line items and
it will perform [actions] with [values you choose]
Change PIN Status provides the following functionality:
Clear the PIN associated with the specified token serial. The token will automatically
be placed in new PIN mode.
Set the PIN associated with the specified token serial to an explicit value.
Force the specified token serial into new PIN mode.
Action | CPS |
Required Fields | TokSerial |
Optional Fields | SetPin, PinMode |
The following values are valid for SetPin:
C or c or 0 Clear Pin for the specified token serial. The specified token serial is
automatically forced to new PIN mode. PinMode is ignored.
Empty Force specified token serial into new PIN mode. This option is valid only if
PinMode equals 1.
“N” New PIN Mode, Old PIN Required.
All other values Set PIN to supplied value.
Set PinMode equal to 1 to force the specified token serial into new PIN mode
Hi,
I have moved this thread to the RSA SecurID Access so that you can get an answer to your question.
You can post future questions and discussions directly to that community by clicking on the Ask a Question or Start a Discussion button on the RSA SecurID Access page.
Thanks,
Jeff