Manage one-time password (OTP) secret keys
To help manage mobile data, such as HOTP secret keys and TOTP secret keys, we can use the REST services capability.
- View OTP secret keys.
- Configure OTP secret keys.
- Reset OTP secret keys.
The OTP mechanism groups supported one-time password methods in a single flow and asks the user to select which one-time password method to use to login. The user can select from the supported one-time password authentication methods.
Steps
- Log in to...
https://<WebSEAL host>:<port>/<junction name>/sps/mga/user/mgmt/html/otp/otp.html
- Perform one or more of the following actions:
- View the current OTP secret key.
After logging in we see one or both of the following in clear text and as quick response (QR) code:
- HOTP secret key
- TOTP secret key
- Configure your secret key in the OTP generator:
- Use the clear text to manually enter either the HOTP secret key or the TOTP secret key into OTP provider.
- Scan the QR code. When you scan the QR code, the OTP generator:
- Analyzes the QR code.
- Acquires the following information from the QR code:
- Secret key.
- Account with which the secret key is associated.
- Type of OTP with which the secret key is associated.
- Enter a secret key into OTP generator.
- Reset OTP secret key by clicking reset.
Parent topic: User self-administration tasks