This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements

SecurID® Knowledge Base

Find answers to your questions and identify resolutions for known issues with knowledge base articles written by SecurID experts.

Troubleshooting RSA SecurID Software Token for BlackBerry deployment by CT-KIP

Article Number

000015326

Applies To

RSA Product Set: SecurID
RSA Product/Service Type: RSA Software Token for BlackBerry
RSA Version/Condition: 3.5.1

Issue

This article provides steps on troubleshooting RSA SecurID software Token for BlackBerry deployment by CT-KIP.

Cause

The RSA SecurID Software Token for BlackBerry deployment using CT-KIP will not work with devices with the embedded library.  Refer to page 28 of the RSA SecurID Software Token for BlackBerry Administrator Guide.

You cannot use Dynamic Seed Provisioning to distribute software tokens to devices running the VPN version of the RSA SecurID Token application.

The IT policy requirement is as follows:

IT Policy NameIT Policies for Automating a Token Import Through CT-KIP
ValuesRSASecurIDCTKIPURL 
DescriptionNull (default)
TypeServer URL

Specify a server URL for downloading tokens  through Dynamic Seed Provisioning (CT-KIP) so that users do not have to enter the URL in their BlackBerry devices  to import a token. Strings can contain up to 200 characters.  For example, below are the CT-KIP credentials (for the last token distribution by CT-KIP):

Activation Code24B5849B
Token Generation URLhttps://rsaserver.mycompany.com:7004/ctkip/trigger.jsp?authcode=24B5849B&url=https://fbrsa1.faegre.com:7004/ctkip/services/CtkipService
Service Addresshttps://rsaserver.mycompany.com:7004/ctkip/services/CtkipService
Activation Code DateFri Feb 26 14:31:34 CST 2010
  1. The RSA Software Token for BlackBerry token import fails during the first attempt using the CT-KIP download and works fine the second time. The release notes for RSA Software Token 3.0.2 for BlackBerry describes this behavior in the 8700 model. However, this has been noted in other newer models too. This has been resolved in RSA Software Token 3.5 for BlackBerry.
  2. Download RSA Software Token 3.5.1 for BlackBerry.  You can download RSA Software Token 3.5 for BlackBerry devices directly to the BlackBerry device by clicking here
  3. Automatic download of a token to a device using CT-KIP works only one time. If a token is deleted and you try to import the new token, the RSA token application must be launched and the Import Token option should be used.
  4. If there is a problem in downloading application, verify you can launch www.google.com and www.yahoo.com from the same device. Verify that the third-party software installation is allowed on the device. This is disabled on BES server in IT policy.
  5. CT-KIP requests can be configured with http as well. (default request URL works with https). The http URL can be mentioned on BES server IT policy.
  6. The Service Address URL should be sent to end users by email.
0 Likes
Was this article helpful? Yes No
No ratings

In this article

Version history
Last update:
‎2020-12-13 12:06 AM
Updated by:
Administrator Administrator

Related Content

© 2022 RSA Security LLC or its affiliates. All rights reserved.