Hi I'm Diego, from Italy,
actually not network administrator of our system but I have access to the RSA console.
Currently we are migrating our phones in bulk and need to distribute the tokens for our users.
We have to distribute one token at time from the RSA console, searching the s/n or the user surname and then proceeding to distribute. Unfortunately we have more than 5000 users to distribute and they comes in random order so the token are random and not in crescent or decrescent scale.
I've found the bulk distribution seed based:
In this distribution procedure we can set up some parameters but there is no way to pass the exact token list via *.csv or somehow else.
the only option is ranges, but we prefer to avoid the random ranges because for examples the tokens I have to distribute next monday, and they are 76, have a range of 4207 tokens betweens them!
During our test we verified that when an iOS token is distributed, if it is still active on phone it still works (if it was previusly activated) and there is no problem doing that, if our user will change the phone will be able to import the token otherwise the distribution time will naturally ends 7 days later. But usually we proceed a token at time. We are all in smartworking due the covid-19 Emergency and the idea that all our users may be unable to connect due the massive token failure on our phones is stopping us to use this bulk distribution way and literally we are doing a non sense work distributing one tokens at once. There is absolutely no way to pass to the console a *.csv with the exact list of tokens we need do distribute?
Thanks for your attention
Diego
You can use Security Domains for this.
example:
I have over 2000 software tokens in SystemDomain, I don't want to bulk distribute all of them, only 98 specific ones.
The bulk token job screen would take too long to sort out serial numbers and what I want to export...so I use the Securid Tokens list page and it's search options, to pick and choose which ones move to a System Subdomain.
I will use the -report-dom domain in my example below.
I go to the Securid Tokens list and use search options to pick and checkmark which tokens I want, and move them to a subdomain.
In this screenshot you can see two tokens checked off, and the top dropdown shows Move to Security Domain.
[I ended up picking and moving 98 tokens to -report-dom subdomain.]
Now once all tokens I am concerned with are in the subdomain, I can bulk distribute ALL but only from -report-dom
Now, I have the 98 tokens I previously moved to that subdomain in the bulk distribute job.
You could make as many subdomains as needed named for the Type of Device (IOS-domain, Android-domain..etc) to make it easier, then move tokens to those domains, and run the bulk token job against the appropriate subdomain and matching software token profile.
@Diego Pozzi
I hope you tried the more criteria option.
Either you can mention the Serial no range from and to
And choose More Criteria option to choose the Assigned By or Assigned on so it will give you the correct figures which token you'd assigned to the users and you can bulk provision the tokens to the users.
Hope i am close to your solution.
