If you are a customer of Office 365, then some of your users, if not all, have to use the OATH hardware tokens, e.g. Deepnet SafeID, to verify themselves in the sign-in process enabled with multi-factor authentication (MFA). You might have found out, or will find out, that it can be very time consuming, if not difficult, to manage tokens in Azure AD, as Microsoft does not provide a token lifecycle management system. That is the exact reason why SafeID Token Service (STS) has been developed.
SafeID Token Service (STS) provides a Web-based GUI console that allows customers to manage the full lifecycle of the SafeID tokens by simply pointing and clicking. Using STS, you do not need to manipulate the CSV file and you do not need to upload the CSV file either. You can easily assign, activate, deactivate, unassign, delete and replace a token etc, with simple clicks.