HOTP is a counter-based one-time password. This method enables you to authenticate using the counter-based one-time password generated on the HOTP token. The counter on the token must be is in sync with the server. You can use generic HOTP tokens that adhere to RFC 4226. You can use the static secret key and three consequent OTP generated from the token to enroll. When you try to authenticate on any device, the OTP in the token is compared with the OTP generated in the server. If both OTPs are identical, you are authenticated successfully.
To authenticate by using the HOTP method, perform the following steps:
Specify the HOTP when using software token or connect the USB token, press button on the token.
Click Next.
If the OTP on the token matches with the server generated OTP, the HOTP authentication is successful.
The following table describes the possible error messages along with the workaround for the HOTP authentication.
Table 7-5 HOTP authenticator - error messages
|
Error |
Possible Cause and Workaround |
|---|---|
|
Wrong answer |
The OTP you have provided is incorrect. Specify a valid OTP and try again. |
|
<Your user name> has no authenticator for HOTP |
The HOTP authenticator is not enrolled. You must enroll the authenticator in the Self-Service portal or contact your helpdesk administrator. |