BlackBerry – Built in RSA Soft Token Generation

It pays to read the documentation – since roughly OS 4.2.2 BlackBerry OS releases have contained an embedded SecurID module. For me this only meant I'd install a different version of the application.

In the documentation there's a section named Distributing Tokens using the BES BlackBerry Manager, and it offers an alternative to pushing tokens to the BlackBerry SecurID application.

Assigning the Software Tokens

This is a quick and dirty rundown, I highly recommend you read admin.pdf from the soft token documentation. You can only assign 3 tokens per-user this way.

Assigning a Software Token on BES 4.1.x

On BES 4.1.x launch the BlackBerry Manager and drill down to the user for whom you want to assign the software token. Right click and Edit Properties, and then navigate to Properties > WLAN Configuration and open the Software Tokens section.

Click New and enter the token serial number (with leading zeros) and token password. For the Seed browse to your .sdtid file and import it.

Assigning a Software Token on BES 5.0

Search for the user account in the BAS, click the Software Tokens tab and click Edit User.

Enter the token serial number (with leading zeros), browse for the .sdtid file and type in the token password. Click Save All to save the token to the users profile.

Generating a Passcode or Tokencode

Software Tokens assigned this way will NOT show up in the RSA SecurID application. Read the documentation for information on deploying tokens using the PushToken utility, dynamic seed provisioning, CT-KIP and the BlackBerry Manager (this method). I have a writeup on using the PushToken utility available.

Verify that the token is on the device by browsing to Options > Security > Software Tokens. You should see a Token # entry followed by the serial number. Currently there is no way to rename these tokens, which makes things a tricky if you have multiple tokens.

Once you finish typing in your Token PIN a passcode will be generated.

One very cool feature of the built-in SecurID module is that you can choose to generate a Passcode or Tokencode, and the next or next-next passcode.

Unfortunately you cannot copy the generated codes to the clipboard which detracts slightly from the utility (especially when generating future codes which are likely to be emailed to someone).

Tags: BlackBerry, RSA, SecurID

Posted on Monday, June 22nd, 2009 at 6:07 pm | Filed under BlackBerry, Software, Technology
You can follow any responses to this entry through the Comments feed.
Post a Comment | Trackback URL | Permalink URL

Recent Posts
Recent Comments
- Boatzart on Using Eclipse for Web Development
- Chris on Backup or Restore read-only databases on the BlackBerry
- Gary on The application failed to initialize properly (0xc0000022).
Categories
- Android
- BlackBerry
- Development
- iPhone
- JavaScript
- links
- Personal
- Software
- Tablet PC
- Technology
- UI/UX
- VMware
RSS Links
- Posts RSS Feed
- Comments RSS Feed
Subscribe by E-mail
Archives
Donations
Revenue
Recommended
Services used and recommended by Corey.
- The best text and binary newsgroup service around. 365 day binary retention on August 7, 2009.
- Back up your Exchange Server, SQL Server and more. Built on rsync.

The views expressed on these pages are mine alone and not those of any past or present employer. All information presented on this site was obtained lawfully and not through disclosure under the terms of an NDA.