Google Authenticator with user PIN

[Sagi Bar-Or]

Does anybody know if I can accomplish a local PIN with Google Authenticator? I don't see this option in in the client, but maybe something like that can be accomplished with  the OpenOTP server. 

Explanation about the local PIN feature:  

It is a feature of RSA SecurID. 

The user defines a PIN code (typically 4 digits). 

The password is compounded of user (static) PIN plus the time-based OTP.

This feature makes the local pwd generator two-factor authentication. The user PIN is something you know, and the time based pwd is the something you have. 

[francois...@rcdevs.com]

Hi Sagi

For Google Authenticator I don't know, but with OpenOTP app yes you can protect it with a PIN.

https://itunes.apple.com/us/app/openotp-token/id1148075952

https://play.google.com/store/apps/details?id=com.rcdevs.auth

[francois...@rcdevs.com]

The PIN with openOTP app is only for opening the app and access to the OTP password, but you can also define a different PIN on the server :

webadm > select the user > webadm settings configure > openotp > openotp pin prefix :yes ( you can define it per group, per client policy or globally) 

webadm > select the user > MFA authentication server > Manage OTP PIN Prefix > set the PIN

This PIN should be concatenate each time with the OTP password and works also with Google Authenticator

[Sagi Bar-Or]

Thank you Francois for the gr8 and informative response

--
You received this message because you are subscribed to a topic in the Google Groups "RCDevs Security Solutions - Technical" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/rcdevs-technical/Vf35iTq-grM/unsubscribe.
To unsubscribe from this group and all its topics, send an email to rcdevs-technical+unsubscribe@googlegroups.com.
To post to this group, send email to rcdevs-technical@googlegroups.com.
Visit this group at https://groups.google.com/group/rcdevs-technical.
For more options, visit https://groups.google.com/d/optout.