Unable To Delete Unassigned Expired Token
Originally Published: 2016-01-25
Article Number
Applies To
RSA Product/Service Type: SecurID Appliance
RSA Version/Condition: 8.1.0
Platform: Linux
O/S Version: SUSE Linux
Issue
Cause
Resolution
Solution 1 : If the issue is seen for a single token, perform the following steps
rsaadmin@am8p:~> cd /opt/rsa/am/utils
rsaadmin@am8p:/opt/rsa/am/utils> ./rsautil manage-secrets -a get com.rsa.db.dba.password
Please enter OC Administrator username: ocadmin
Please enter OC Administrator password: *********
com.rsa.db.dba.password: GrcvNN2FUAsWjyPfhaIsSWvjvZhvtN
cd ../pgsql/bin
rsaadmin@am8p:/opt/rsa/am/pgsql/bin> ./psql -h localhost -p 7050 -d db -U rsa_dba
put the password that appeared
And Query we will run:
select * from rsa_rep.am_ctkip_authcode where token_serial_num like '000112259786';
Delete from rsa_rep.am_ctkip_authcode where token_serial_num like '000112259786';
Solution 2 : If the issue is seen for several random tokens, perform the following steps
rsaadmin@am8p:~> cd /opt/rsa/am/utils
rsaadmin@am8p:/opt/rsa/am/utils> ./rsautil manage-secrets -a get com.rsa.db.dba.password
Please enter OC Administrator username: ocadmin
Please enter OC Administrator password: *********
com.rsa.db.dba.password: GrcvNN2FUAsWjyPfhaIsSWvjvZhvtN
cd ../pgsql/bin
rsaadmin@am8p:/opt/rsa/am/pgsql/bin> ./psql -h localhost -p 7050 -d db -U rsa_dba
put the password that appeared
select token_serial_num from am_ctkip_authcode where is_token_assigned='t' and token_serial_num IN (select serial_number from am_token where token_shutdown_date<='2017-12-31 00:00:00');
Delete from am_ctkip_authcode where is_token_assigned='t' and token_serial_num IN (select serial_number from am_token where token_shutdown_date<='2017-12-31 00:00:00');
Note : Please Backup RSA Database before performing these steps
Related Articles
Remove a Custom Console Logon Banner Number of Views Enable unassigned RSA SecurID tokens in bulk for RSA Authentication Manager 8.1 SP1 or later Number of Views Generating a report to list unassigned tokens in RSA Authentication Manager 8.x Number of Views Generic REST Collector fails with 'Access token has expired' error in RSA Identity Governance & Lifecycle Number of Views Unassign a User Alias from a RADIUS Profile Number of Views
Trending Articles
Quick Setup Guide - Passwordless Authentication in Windows MFA Agent for Active Directory Troubleshooting RSA MFA Agent for Microsoft Windows Oracle 12c TEMP_UNDO_ENABLED parameter for managing GTT UNDO activity in RSA Identity Governance & Lifecycle RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide RSA Authentication Manager 8.9 Release Notes (January 2026)
Don't see what you're looking for?
