Previous Topic: Configuring OATH OTP Authentication PolicyNext Topic: Configuring ArcotID OTP (OATH-Compliant) Settings

CA Strong Authentication Administration GuideManaging Global CA AuthMinder ConfigurationsConfiguring Profiles and PoliciesConfiguring OATH OTP SettingsManaging OATH OTP Tokens

Managing OATH OTP Tokens

You can use the Administration Console to bulk-upload OATH tokens or to bulk-fetch OATH tokens that are assigned at the global- or organization-level.

This section walks you through:

Fetching OATH OTP Tokens

Follow these steps:

  1. Click the Services and Server Configurations tab on the main menu.
  2. Verify that the CA Strong Authentication tab in the submenu is active.
  3. Under the OATH OTP section, click the Token Management link to display the OATH OTP Token Management page.
  4. Edit the fields in the Fetch Tokens section, as required.
    Token Status

    Select the status to fetch the tokens. The possible statuses are:

    • Free: Indicates that the token is not assigned to a user.
    • Assigned: Indicates that the token is assigned to a user.
    • Abandoned: Indicates that the user for whom the token was assigned is no longer associated with the token.

      For example, an employee who has obtained a new token or an employee who has left the organization.

      Abandoned tokens can be assigned to other users.

    • Failed: Indicates the tokens that failed during the upload operation.
    Batch ID

    The identifier that denotes the batch in which the OATH token is manufactured.

    Token ID

    Specify the unique identifier of the token.

    You can also include wild characters such as, * (asterisk), . (period), and \ (backslash) in your search criteria. You can use these characters as explained in the following example.

    If you have the following tokens in the database:

    • 12
    • 123
    • 1234
    • 123*4

    If you enter the token ID as 12*, then all the tokens listed above will be fetched. If you enter the token ID as 12., then the token 123 will be fetched. If you enter 123\*4, then the token 123*4 will be fetched.

    Fetch Tokens Available at Global Level

    Select this option if you want to fetch the tokens that are assigned at the global level.

    Fetch Tokens Assigned to Organizations

    Select the organizations for which the tokens have been assigned. The tokens that are assigned to the selected organizations will be fetched.

  5. Click Fetch to fetch the tokens.
Uploading OATH OTP Tokens

Follow these steps:

  1. Click the Services and Server Configurations tab on the main menu.
  2. Verify that the CA Strong Authentication tab in the submenu is active.
  3. Under the OATH OTP section, click the Token Management link to display the OATH OTP Token Management page.
  4. Click the Browse button corresponding to the XML File Containing OATH OTP Tokens to upload the XML file that defines the key container for OTPs that have to be issued by the CA AuthMinder Server.

    Note: CA AuthMinder provides a sample XML file oath-token-upload.xml to upload OATH tokens to the users. This file creates OATH tokens for predefined users. It is available at the following location:

    On Windows: <install_location>\Arcot Systems\samples\xml\webfort

    On UNIX: <install_location>/arcot/samples/xml/webfort

  5. Click Upload.