stoken: How to generate device id

[shamimgeek]

How can i generate device with stoken?

[AchilleSalaun]

I would like to use stoken as an alternative to RSA SecurID (not on Linux). Here is the process I can't figure out with stoken:

Email Your Device ID: Before issuing you a token, your IT administrator may need to know your Device ID.

1. To find your device ID in the RSA SecurID app, touch Menu > About.
2. To send your device ID to your IT administrator using your device's Mail app: On the About screen, touch Menu > Email.
3. Send the e-mail to your IT or Help Desk administrator.

How to access such an ID ? Is it possible using stoken ?

[ke352802081770314]

I am facing the same issue. The organization has a self-service portal where I can have a sdtid file generated for my softtoken installation, and I need to enter the Device Serial Number for it to happen. I see no hint in the manpage how to obtain this piece of data from stoken. On the other hand, the RSA SecurID Softtoken GUI displays this data - and stoken is supposed to be a replacement, so I expected to find it here too? stoken-gui refuses to open before a token is imported, the stoken manpage oes not mention it, the CLI stoken command does not seem to have any relevant option, and I googled various related terms but didn't find any hints unfortunately. I have a choice of platform when requesting a token, is there a platform known that does not need this data? Choices I am given are: "Windows computer", "iPhone", "iPad", "Android device", "MacOS X", "Windows Mobile 8", "Blackberry". Ideally the manpage should suggest the platform that stoken is most alike. I tried "Windows computer" because that's what I am replacing with Linux and stoken. I also tried "stoken issue" to see whether the generated token (which is of no use to me) contains it but it is empty: <DeviceSerialNumber> </DeviceSerialNumber>

[StephenBrown2]

The way I've done it is install the SecurID app on my Android, then get the device ID from there, and import the generated stdid given back to me into stoken.

[cernekee]

IIRC, when I looked at the RSA app several years ago, it was just generating random IDs. Nothing that's actually tied to (say) your phone's ESN.

stoken lets you enter the device ID under the assumption that your soft token was already bound to an existing device; if you're running the RSA app on your phone you probably can't choose the device ID to use there.

If you're only using stoken, but still need to provide a device ID to your organization to get an sdtid file, you should be able to make up your own device ID (possibly something trivial like all zeroes).

[cemeyer]

FWIW, when I did this for a CT-KIP token in the past on both iphone and android, the deviceid was a 24-character hex string (i.e., representing a 12 byte ID). No obvious structure to it (definitely not plaintext); could be random.

[madscientist]

It seems like an option to stoken to generate a device ID would be very helpful for situations where we aren't trying to match an existing device. The instructions I received (for windows, mac, iphone, android) all say basically "go look at the device ID reported by the software". It would be cool if stoken could generate such an ID when it first starts stash it away somewhere. Then it could be retrieved when needed, or there could be an option to overwrite it with an ID that the user obtained from somewhere else such as a phone or whatever.