System information
There are six possible token statuses:
• The token is physically damaged.
For this status, the TPS revokes the user certificates and marks the token lost.
• The token has been permanently lost.
For this status, the TPS revokes the user certificates and marks the token lost.
• The token is temporarily lost or unavailable.
For this status, the TPS puts the user certificates on hold and marks the token inactive.
• The lost token has been found.
For this status, the TPS takes the certificates off hold and marks the token active .
• The lost token cannot be found (permanently lost).
For this status, the TPS revokes the certificates and marks the token lost.
• This token has been terminated.
For this status, the TPS terminates the token and deems the token useless.
To change the status, select the menu item, and click Go.
3.2. Editing the Token
Agents can modify the policy that is applied to a token. The two supported token policies are
RE_ENROLL, which allows a user to re-enroll certificates with the same token, and PIN_RESET
which allows the token user to initiate a PIN reset operation.
Each of the supported token policies accept values of either YES or NO. You can set both policies
by separating them with a semi-colon.
To edit the policy applied to a token, click Edit on the Token Details page to display the Edit
Token page. This page displays the Token ID, User ID, Status, and Policy information. Enter the
required policy in the Policy field.
For example, to allow the user to reset his PIN but to disallow re-enrolling with the same token,
use the following policy definition:
RE_ENROLL=NO;PIN_RESET=YES
Chapter 9. TPS: Agent Services
82