Installing the same RSA SecurID Software Token 5.0 for Windows on different machines without reimporting
RSA Product Set: SecurID RSA Product/Service Type: SecurID Software Token for Windows RSA Version/Condition: 5.0.x
There are a pool of users and a pool of Windows machines.
The end user needs to be able to access the token for each individual user from any machine without reimporting each token on each machine.
The home of the users on the server is set to a remote location, such as \\fileserver\users\%USERNAME%.
Have one token imported per user on one Windows machine and have the token accessible for the user from any other Windows machine.
Install the RSA SecurID software token application on each server using the following properties:
SETCOPYPROTECTION=FALSE to remove the binding of the token to the specific machine on which the token is imported; and thus to be able to find it on any other machine.
SETSINGLEDATABASE=TRUE to remove the binding of the token to the specific user accessing the machine. The installation is still secured as the token is stored in the home drive of each user and cannot be accessed by any other user.
SETDATABASEDIR=%AppData%\RSA to install the database containing the user’s software token to a location other than the default directory.
The database location above is for the Roaming folder which is shareable, if a user changes his actual workstation.
The database location can be different if you want to put it on a shared drive, which is sort of a permanent but remote location, for example \\fileserver\users\%USERNAME%.
Standard RSA SecurID Software Tokendesktop application