HOTP is a counter-based one-time password. This method enables you to authenticate using the counter-based one-time password generated on the HOTP token. The counter on the token must be is in sync with the server. You can use generic HOTP tokens that adhere to RFC 4226. You must use the static secret key and three consequent OTP generated from the token to enroll. When you try to authenticate on any device, the OTP in the token is compared with the OTP generated in the server. If the OTPs are identical, you are authenticated successfully.
To authenticate using the HOTP method, perform the following steps:
Specify the OTP when using software token or some kind of hardware tokens or connect the USB token, press button on the token.
Click Next.
If the OTP on the token and the server generated OTP are identical, the HOTP authentication is successful.
The following table describes the possible error message along with the workarounds for the HOTP authentication.
Table 3-6 HOTP authenticator - error messages
Error |
Possible Cause and Workaround |
---|---|
Wrong answer |
The OTP you have provided is incorrect. Specify a valid OTP and try again. |
<Your user name> has no authenticator for HOTP |
You have not enrolled for HOTP method. You must enroll the authenticator in the Self-Service portal or contact your helpdesk administrator. |