Wont work with Feitian C200
1,008 views
Skip to first unread message
rossdav
Dec 20, 2011, 10:16:16 AM12/20/11
to RCDevs Security Solutions - Technical
Hi,
Up to now while testing I have been using the Google Authenticator App
for Android and everything has been working as expected.
I want the users to have physical tokens rather than using an App, so
purchased several Feitian C200s.
My understanding is that these are Time based Tokens so have tried
registering them with:
Token Type: OATH TOTP
Key Mode: Generated by token
Algorithm: SHA1
Format: Hex
Token Key: (40 character seed provided by token distributor)
The token registers ok, but when I test it fails. The log says "Wrong
TOTP password".
Any idea what could be wrong?
Thanks, David.
Administrators
Dec 20, 2011, 10:34:14 AM12/20/11
to RCDevs Security Solutions - Technical
Yes it's because the Feitian TOTP have a TimeStep of 60secs and not
the 30 OpenOTP default.
Change it in the OpenOTP configuration or in the OpenOTP user
settings.
the 30 OpenOTP default.
Change it in the OpenOTP configuration or in the OpenOTP user
settings.
rossdav
Jan 3, 2012, 5:41:19 AM1/3/12
to RCDevs Security Solutions - Technical
Thanks for that. Just got back from my holidays, changed the timestep
to 60 and tried again ... still no luck.
This is what I am seeing in the log
750D5931] Found user settings:
LoginMode=OTP,OTPType=TOKEN,OTPLength=6,ChallengeMode=,ChallengeTimeout=90,ChallengeFake=1,HOTPLookAheadWindow=25,TOTPTimeStep=60,TOTPTimeOffsetWindow=300,MOTPTimeOffsetWindow=120,OCRASuite=OCRA-1:HOTP-
SHA1-6:QN06-
T1M,SMSType=Normal,SMSMode=Ondemand,MailMode=Ondemand,ListSize=50,LastOTPTime=300
[Tue Jan 03 10:24:11 2012] [127.0.0.1] [OpenOTP_750D5931] Found user
data: TokenType,TokenKey,TokenState,LoginCount
[Tue Jan 03 10:24:11 2012] [127.0.0.1] [OpenOTP_750D5931] Wrong TOTP
password
Can you see anything else that might be wrong for use with the C200?
Thanks.
> > Thanks, David.- Hide quoted text -
>
> - Show quoted text -
to 60 and tried again ... still no luck.
This is what I am seeing in the log
750D5931] Found user settings:
LoginMode=OTP,OTPType=TOKEN,OTPLength=6,ChallengeMode=,ChallengeTimeout=90,ChallengeFake=1,HOTPLookAheadWindow=25,TOTPTimeStep=60,TOTPTimeOffsetWindow=300,MOTPTimeOffsetWindow=120,OCRASuite=OCRA-1:HOTP-
SHA1-6:QN06-
T1M,SMSType=Normal,SMSMode=Ondemand,MailMode=Ondemand,ListSize=50,LastOTPTime=300
[Tue Jan 03 10:24:11 2012] [127.0.0.1] [OpenOTP_750D5931] Found user
data: TokenType,TokenKey,TokenState,LoginCount
[Tue Jan 03 10:24:11 2012] [127.0.0.1] [OpenOTP_750D5931] Wrong TOTP
password
Can you see anything else that might be wrong for use with the C200?
Thanks.
>
> - Show quoted text -
rossdav
Jan 3, 2012, 6:40:38 AM1/3/12
to RCDevs Security Solutions - Technical
OK, dont worry... its working.
I tried removing the token and re-adding it having made the timestep
value and now its working.
Great. :)
On Jan 3, 10:41 am, rossdav <rossda...@gmail.com> wrote:
> Thanks for that. Just got back from my holidays, changed the timestep
> to 60 and tried again ... still no luck.
>
> This is what I am seeing in the log
>
> 750D5931] Found user settings:
> LoginMode=OTP,OTPType=TOKEN,OTPLength=6,ChallengeMode=,ChallengeTimeout=90,ChallengeFake=1,HOTPLookAheadWindow=25,TOTPTimeStep=60,TOTPTimeOffsetWindow=300,MOTPTimeOffsetWindow=120,OCRASuite=OCRA-1:HOTP-
> SHA1-6:QN06-
> T1M,SMSType=Normal,SMSMode=Ondemand,MailMode=Ondemand,ListSize=50,LastOTPTime=300
> > - Show quoted text -- Hide quoted text -
I tried removing the token and re-adding it having made the timestep
value and now its working.
Great. :)
On Jan 3, 10:41 am, rossdav <rossda...@gmail.com> wrote:
> Thanks for that. Just got back from my holidays, changed the timestep
> to 60 and tried again ... still no luck.
>
> This is what I am seeing in the log
>
> 750D5931] Found user settings:
> SHA1-6:QN06-
> T1M,SMSType=Normal,SMSMode=Ondemand,MailMode=Ondemand,ListSize=50,LastOTPTime=300
Reply all
Reply to author
Forward
0 new messages