This article describes how to configure and enable to use Nexus OTP display cards.
Prerequisites
Access to the OTP cards
Access to the seed import file
Log in to Digital Access Admin with an administrator account
Prepare the import file
Export the import file from XLS to CSV, if needed.
Make sure that there are no extra signs, for example quotation marks. Also remove any column headers. The import file shall now look like this (one row for each token:
88123DEDEFCB4880,ABCC00002023,ABCC00002023,e3050L,SDT1120A028022B,1,65535,021B153CFE1DEC523994D4C20CD4036794084172
78098DE18A1B4281,ABCC00002024,ABCC00002023,e3050L,SDT1120A028022B,1,65535,097F321DA23EDC523292C4C20CD4016794064999
...
Import OATH tokens
Follow the instructions under Import OATH tokens to the Digital Access database in Set up OATH tokens in Digital Access. In step 4 enter these values:
Configuration parameter Value Description Provider Name My token provider A unique display name for the token provider OTP Length 8 The length of the OATH produced by the OATH device Delimiter , A "comma" sign, the symbol used to separate the fields in the text file TokenId position 2 The field position of TokenId within the token text file Seed Position 7 The field position of seed within the token text file Counter Position 5 The field position of counter within the token text file Do not
...
check Seed and counter is base64 encoded.
Create authentication method
Follow the instructions under Enable OATH authentication in Set up OATH tokens in Digital Access, with these exceptions:
Do NOT select Two Factor Authentication.
Use default values.
Assign an OATH device to a user
Follow the instructions under Assign an OATH device to a user in Set up OATH tokens in Digital Access. In step 4c enter the Token ID, for example, ABCC00002023.
Now it should be possible to authenticate with the OTP display card using the pin provided in the PIN file.
If the import fails
If the import fails, the OTP display card counter can be out of sync. The token must be re-synced. Follow these steps:
In Digital Access Admin, go to Manage Accounts and Storage.
...
Click User Accounts
...
and search for and select a user account. Go to the PortWise Authentication tab.
In the OATH section click the synchronize icon for the OTP display card and follow the instructions.