Unable To Delete Unassigned Expired Token
Originally Published: 2016-01-25
Article Number
Applies To
RSA Product/Service Type: SecurID Appliance
RSA Version/Condition: 8.1.0
Platform: Linux
O/S Version: SUSE Linux
Issue
Cause
Resolution
Solution 1 : If the issue is seen for a single token, perform the following steps
rsaadmin@am8p:~> cd /opt/rsa/am/utils
rsaadmin@am8p:/opt/rsa/am/utils> ./rsautil manage-secrets -a get com.rsa.db.dba.password
Please enter OC Administrator username: ocadmin
Please enter OC Administrator password: *********
com.rsa.db.dba.password: GrcvNN2FUAsWjyPfhaIsSWvjvZhvtN
cd ../pgsql/bin
rsaadmin@am8p:/opt/rsa/am/pgsql/bin> ./psql -h localhost -p 7050 -d db -U rsa_dba
put the password that appeared
And Query we will run:
select * from rsa_rep.am_ctkip_authcode where token_serial_num like '000112259786';
Delete from rsa_rep.am_ctkip_authcode where token_serial_num like '000112259786';
Solution 2 : If the issue is seen for several random tokens, perform the following steps
rsaadmin@am8p:~> cd /opt/rsa/am/utils
rsaadmin@am8p:/opt/rsa/am/utils> ./rsautil manage-secrets -a get com.rsa.db.dba.password
Please enter OC Administrator username: ocadmin
Please enter OC Administrator password: *********
com.rsa.db.dba.password: GrcvNN2FUAsWjyPfhaIsSWvjvZhvtN
cd ../pgsql/bin
rsaadmin@am8p:/opt/rsa/am/pgsql/bin> ./psql -h localhost -p 7050 -d db -U rsa_dba
put the password that appeared
select token_serial_num from am_ctkip_authcode where is_token_assigned='t' and token_serial_num IN (select serial_number from am_token where token_shutdown_date<='2017-12-31 00:00:00');
Delete from am_ctkip_authcode where is_token_assigned='t' and token_serial_num IN (select serial_number from am_token where token_shutdown_date<='2017-12-31 00:00:00');
Note : Please Backup RSA Database before performing these steps
Related Articles
Generic REST Collector fails with 'Access token has expired' error in RSA Identity Governance & Lifecycle Number of Views Generating a report to list unassigned tokens in RSA Authentication Manager 8.x Number of Views Remove a Custom Console Logon Banner Number of Views How to empty/delete tokens from the token table in the RSA Tokenization Appliance? Number of Views Unassign a User Alias from a RADIUS Profile Number of Views
Trending Articles
Passwordless Authentication in Windows MFA Agent for Active Directory – Quick Setup Guide RSA Authentication Manager Upgrade Process RSA Authentication Manager 8.9 Release Notes (January 2026) An example of SSO using SAML and ADFS with RSA Identity Management and Governance 6.9.x RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide
Don't see what you're looking for?
