Scribd
Upload
473 views23 pages

OTP Server User Portal User Manual V4.5

OTP Server User Portal User Manual V4.5

Uploaded by

omar cabrera
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
473 views23 pages

OTP Server User Portal User Manual V4.5

OTP Server User Portal User Manual V4.5

Uploaded by

omar cabrera
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 23

OTP Server User Portal User

Manual

V4.5

Feitian Technologies Co., Ltd.

Website:www.FTsafe.com
OTP Server User Portal User Manual

List of chapters
About this document ........................................................................................................................... 1
1.1 Audience ........................................................................................................................................................ 1
1.2 Feedback ........................................................................................................................................................ 1
1.3 Basic Environment Description ...................................................................................................................... 1
1.4 Documentation Conventions ......................................................................................................................... 1
User Portal Products ............................................................................................................................ 3
2.1 User Portal Features ...................................................................................................................................... 3
2.2 User portal technology used point ................................................................................................................ 3
Preparation before installation ............................................................................................................. 5
Installation .......................................................................................................................................... 6
System Login........................................................................................................................................ 7
5.1 Login............................................................................................................................................................... 7
5.2 Forgot Password............................................................................................................................................. 7
5.3 View Profile .................................................................................................................................................... 7
5.4 Change Password ........................................................................................................................................... 8
5.5 Exit ................................................................................................................................................................. 8
Feature List .......................................................................................................................................... 9
6.1 Bind user and token ....................................................................................................................................... 9
6.2 Token Replacement ...................................................................................................................................... 10
6.3 Token to unlock ............................................................................................................................................ 10
6.4 Token Authentication Test............................................................................................................................ 10
6.5 Token Synchronization ................................................................................................................................. 11
6.6 Token loss report.......................................................................................................................................... 12
6.7 Token solution linked ................................................................................................................................... 12
6.8 Token activation ........................................................................................................................................... 13
6.9 Get an unlock code ...................................................................................................................................... 13
6.10 Get two unlock code .................................................................................................................................. 14
6.11 Modify the emergency password .............................................................................................................. 14
6.12 Mobile Token distribution .......................................................................................................................... 15
6.13 SMS Token application ............................................................................................................................... 16
6.14 Software token distribution ....................................................................................................................... 16
6.15 Transaction Signature verification test ...................................................................................................... 17
6.16 Users to modify the basic information ...................................................................................................... 17
Abbreviations and Terminology Appendix I. .................................................................................................19

Copyright © Feitian Technologies Co., Ltd.


i
Website: www.FTsafe.com
OTP Server User Portal User Manual

About this document


This document is designed to help users to use OTP Server user portal related operations, the main contents
include user portal installation uninstall the trial and other interface features.

1.1 Audience

This document is for OTP Server user portal testers, technical support staff (including pre-sale and after-sale
technical support staff), the customer's system installation, configuration, management and maintenance
personnel, and other related personnel.

1.2 Feedback

In order to provide the reader with clarity, structural integrity, rich in content, easy to understand
documentation, we very much welcome the readers of this document to express their personal opinions and
suggestions. If you prefer, you can send your comments and suggestions to tell us.

1.3 Basic Environment Description

The contents of this document are based on the following description of the environment, and if the reader
with the following environmental operating environment is different, there may be a certain degree of difference,
difference in size based on the specific environmental differences may be.

(1)Database system: providing at least one of MySQL, SQL Server, Oracle

( 2 ) OTP Server User Portal System V4.5: including installing programs, testing the user and the
corresponding test token.

1.4 Documentation Conventions

In order to facilitate the user to read and understand the contents of this document are described in the
document the specific type of information using a special representation. The following special representation
used in this document will be explained.

No. Document Description

Copyright © Feitian Technologies Co., Ltd.


1
Website: www.FTsafe.com
OTP Server User Portal User Manual

representation
1  the menu hierarchy
2 # AS4 system prompt
3 Times New Roman Represents the name of the other
documents cited
4 Consolas user input
5 Tohoma Represents the system prompt
information or information that already
exists

Copyright © Feitian Technologies Co., Ltd.


2
Website: www.FTsafe.com
OTP Server User Portal User Manual

User Portal Products

2.1 User Portal Features

User portal is mainly to reduce the workload of the enterprise OTP administrators, special permission will be
some simple token user and open to the user, so that users can perform related operations locally, such as token
binding, replacement, report the loss, synchronization, etc. operations.

2.2 User portal technology used point

Reception using JSP, jQuery LigerUIV1.1.9, formValidator4.5.1 and CSS, background using Struts2, ibatis and
Soap. Mainly through the client request, Struts2 forwards the request to the controller parameters, and the
controller. A: call the business interface, call the Dao Services Service layer by layer, to complete crud operations in
Dao layer database through ibatis; two: Soap returns results by calling the authentication server, it returns the
results sent to the specified view encapsulated by the view JSP completed the results show.

Front End:

Front end is using JSP, jQuery LigerUIV1.9, formValidator4.0.1 and CSS.

Using JSP and jQuery LigerUI to provide the interaction interface between the user and the system, jQuery
LigerUI can support multiple controls such as Grid, Selecter, combox etc., it is convenient and effective, besides,
Jquery’s Ajax technology can improve user experience. FormValidator4.0.1 provides rich checksum methods,
which can improve user experience and reduce the frequency of wrongly input.

Back End:

Back end is using JAVAEE architecture, combined with Sruts2, ibatis and SOAP.

Struts2 is based on MVC architecture, which is clear and easy to be controlled by the developer, it uses
modules and can reduce coding coherence.

Ibatis supports normal SQL enquiry, it uses sample XML or note for configuration and the original matching, it
records the matching of interface and Java’s POJOs(PlanOld Java Objects, a normal Java object) in the database.
Ibatis puts the sql statements out of the Java source code, and put them in a single XML file which makes the
maintenance of the program much more convenient.

Using SOAP: the database needs to be accessed while during the system login and loading system

Copyright © Feitian Technologies Co., Ltd.


3
Website: www.FTsafe.com
OTP Server User Portal User Manual

configuration information, all the other token-related operations need to call for the authentication server’s SOAP
interfaces, such as automatically binding token, token authentication test, etc. This can reduce the cost of the
code maintenance.

Copyright © Feitian Technologies Co., Ltd.


4
Website: www.FTsafe.com
OTP Server User Portal User Manual

Preparation before installation


In order to successfully complete user portal installation and testing, before making a formal installation,
complete the following preparations.

No. Operation Description


Installation and configuration You can choose any kind of database in MySQL,
1.
database system PostgreSQL, SQL Server, Oracle.
First create a database, SQL scripts and provided by
Creating OTP Server databases and
2. OTP Server authentication server to create the
database tables
database tables.
For details, see "OTP Server Installation and
OTP Server authentication server
3. Configuration Guide (windows) V4.5" or "OTP Server
installation
Installation and Configuration Guide (linux) V4.5".
Installation or configuration process requires
Install, configure and run the OTP authorization files, the specific operation, please
4.
Management Center refer to "OTP Server Management Center User
Manual V4.5".
Import token seed in the Administration Center, the
5. Import token seed specific operation, please refer to "OTP Server
Management Center User Manual V4.5".
Create a test user in the Administration Center, the
6. Create a test user specific operation, please refer to "OTP Server
Management Center User Manual V4.5".
In the center of the user in the test management and
Users open a portal to the test user
test token binding, specific operations, please refer
7. permissions and privileges given to
to "OTP Server Management Center User Manual
each module
V4.5".

Firewall configuration check OTP Make sure that the configuration allows between OTP
8. Server authentication server and the Server authentication server to communicate with
computer where the user portal the user via the portal UDP 1915 and 1916 ports.

Installation process requires authentication proxy


9. Start user portal installation.
configuration file.

Copyright © Feitian Technologies Co., Ltd.


5
Website: www.FTsafe.com
OTP Server User Portal User Manual

Installation
OTP Server4.5 integrated installation package, integrated installation package contains the authentication
server installation, management centers, and other MySQL users and portal, you can choose to install all of the
installation can also be selected. Specific installation steps reference "OTP Server Installation and Configuration
Guide (windows) V4.5" or "OTP Server Installation and Configuration Guide (linux) V4.5".

Copyright © Feitian Technologies Co., Ltd.


6
Website: www.FTsafe.com
OTP Server User Portal User Manual

System Login

5.1 Login

(1)Open your browser and enter the user portal address in the browser address bar: http // IP: 18004 /
otpportal into the user portal login page.

Note: The IP address of the user portal refers to the installation of the product user portal server IP

(2)In the login page, enter the correct user name, password and verification code, enter the user portal
system. Users first login, the system will prompt changes added by the administrator when a static password
unified set. Not the first time the user logged in the log directly into the system.

5.2 Forgot Password

When logging in a user forgets the password, the system also provides information based on the user's
mailbox to get the login passwords.

On the login screen click on the "Forgot Password" hyperlink, switching to retrieve your password interface.

Enter your username and email account, click on the "OK" button, the system will be sent to the user's
mailbox a hyperlink, click on the link to reset your password.

Ensure the realization of this function must satisfy the following two points:

1)Enter the mailbox, the user's personal information must be filled in the mailbox, otherwise lookup fails,

2)Management center must configure the correct mail server available, otherwise the message cannot be
sent.

3) This system can only support using AD password to logon, retrieving AD password is not supported, if
you lost your AD password, please contact the administrator.

5.3 View Profile

Once logged in user portal, users can view their personal profile information. Click on the top right corner of
the page "personal data" hyperlink to switch to basic information about the user to view the page, the user can
check the profile information is correct.

Copyright © Feitian Technologies Co., Ltd.


7
Website: www.FTsafe.com
OTP Server User Portal User Manual

5.4 Change Password

In addition, when the initial login user login password can modify the static outside, after entering the system
still can modify their own passwords. Click on the top right corner of the "Change Password" hyperlink, switching
to modify the static password interface changes.

Note: this system only support using AD password to log in, modifying AD password is not supported.

5.5 Exit

When the login user portal system in the upper right corner of the page, you can see the "safe exit" hyperlink,
click on the hyperlink, you can safely exit the user portal.

Copyright © Feitian Technologies Co., Ltd.


8
Website: www.FTsafe.com
OTP Server User Portal User Manual

Feature List
The following list of features that the current user has the function module, the appropriate action can be
carried out in each module, the next will detail the operation of each functional module.

Tip: The number of the number of functional modules user login seen by the management center
configuration decisions, see the "OTP Server Management Center User Manual V4.5".

6.1 Bind user and token

This module provides users with binding token functions.

In the "be binding token" input box bound to make the grade in the "dynamic password" input box, enter the
current password token, click the "Bind" button bindings. If the user is already bound some token, there will be
"has been tied to the token" item on the screen that lists all token user binding.

Tip:

1. There will be an OTP input frame if you set “while binding user, whether need to verify token’s OTP” as Yes
or Optical: if set it as Yes, inputting the OTP is mandatory, if set it as optical then inputting the OTP is
optical. If setting it as No, then there is no need to input the OTP code.

2. If the bind fails, it may be the following situations occur:

1) The current user is allowed to bind has reached the maximum number of tokens, to continue binding,
you need to let the administrator to modify the current number of users allowed to bind token

2) The current number of users allowed to bind token has reached the maximum number of users, is bound
to continue, you need to let the administrator to modify the current token to allow binding.

3) Dynamic password incorrectly entered, the need to enter the correct dynamic password.

4) Synchronous dynamic password entered does not solve this problem, the need for token
synchronization.

5) The input serial number do not exist in the center of the token list management.

6) If the token status is: forbidden, expired, scraped, lost, temporary locked, permanently locked, then it
cannot be bound with a user.

Copyright © Feitian Technologies Co., Ltd.


9
Website: www.FTsafe.com
OTP Server User Portal User Manual

6.2 Token Replacement

This module provides users token functions currently bound to be replaced.

Select "has been tied to the token" token to be replaced, in the "new token" input box to enter a new order
grades, enter the new tokens in the "dynamic password" in the current password, click on the "change" button
conduct token replacement.

Tip:

1) For whether need to verify OTP code, the settings are the same as in chapter 6.1

1) Replace the failure occurs in the same situation in 6.1 Tips identical

2) If the user is not bound over token into the module, the "unbound over token replacement operation
cannot be.

6.3 Token to unlock

This module provides users with a token to unlock the binding function, but only temporarily lock unlock
token, permanently locked token can only contact the administrator to unlock in the Administration Center.

Token presence user is bound locked into the "token to unlock modules" lock token accordance with the
"permanent lock token" and "temporary lock token" shown separately.

Permanent lock token must be unlocked by an administrator, provisional locked token offer "unlock" button,
click "unlock", enter the user's static password, the temporary lock token successfully unlocked. When the lock
token few more, will show a drop-down list form.

Tip:

1) The user is not bound to bind token token or no lock, enter the module, the interface displays "Lock token
does not exist, cannot unlock operation!"

2) If all of the locked state of the token to the user is bound a "permanent lock" or "provisional lock" one, the
token will only list the lock condition exists at the interface.

6.4 Token Authentication Test

This module provides users tested for binding token authentication function, token authentication test can be
summarized into three categories: ordinary token authentication test (non-SMS token type and time of event type

Copyright © Feitian Technologies Co., Ltd.


10
Website: www.FTsafe.com
OTP Server User Portal User Manual

tokens (including c300 token time type the password)), SMS c300 token authentication challenge-response test
and authentication testing.

Common token authentication test, enter the token authentication test interface, select the type of
authentication testing of ordinary token, in the current password "Dynamic Password" box, enter the token, click
the "Authentication" button to authentication testing.

SMS token authentication test, enter the token authentication test interface, select the authentication token
message, "Get Password" hyperlink appears under "has been tied to the token", click on the hyperlink, the user
will receive the corresponding phone SMS token password, enter a password into a dynamic password box, click
on the "authentication" button for authentication.

Tip: When using SMS token, there are two prerequisites, one must be configured in the Administration
Center available SMS Gateway, the second is a test user profile has to fill the available phone number,
both are indispensable, otherwise SMS token get password failures.

C300 token challenge-response authentication test, enter the token authentication test interface, select
certified c300 token, "Obtaining challenge value" hyperlink appears under "has been tied to the token", click on
the hyperlink, the link will appear below the string challenge value, will challenge the value input to the
corresponding c300 token, get a new password, enter a password into the "dynamic password" box, click on the
"authentication" button for authentication.

Tip: If you do not bind the user token into the module, the interface displays "unbound over token, can not be
certified to operate!"

6.5 Token Synchronization

This module provides users with synchronized tokens for binding function.

Click on the feature list under the "token Sync" hyperlink, enter the token synchronous interface, choose to
sync token, in the "dynamic password" box, enter the token current password, enter the current password in the
"next time dynamic password" box under a continuous dynamic password, click on the "sync" button to
synchronize.

Tip: If you do not bind the user token into the module, the interface displays "unbound over the token, you
cannot synchronize!"

If the binding is SMS token, it says "not bound by supporting synchronization token, you cannot
synchronize!"

Copyright © Feitian Technologies Co., Ltd.


11
Website: www.FTsafe.com
OTP Server User Portal User Manual

6.6 Token loss report

This module provides users report the loss of tokens for the tie function

Click on the feature list under the "token loss report" hyperlink, enter the token loss reporting interface,
choose to report the loss of a token, click the "loss report" button, pop-up "static passwords to authenticate
users" dialog box, enter the login user's static in the dialog box password, click OK, the system prompts the token
report the loss success.

Tip:

1. If no token has been bound, while entering this module, it will display “no token bounded, cannot
perform the lost report operation!”

2. If all the bound tokens had been already reported as lost, it will display “no un-reported lost token exist,
cannot perform the lost report operation”

3. While setting the verification method as “using AD password to verify” in “management center” ->
“Configuration” -> “User Portal Configuration” -> “Login password”, after pressing “lost” button, you will
need to input your AD password instead of the static password.

6.7 Token solution linked

This module provides users are tied for the lost token solution linked operation.

Click on the feature list under the "token solution linked" hyperlink, enter the token solution linked interface,
select the solution linked token, click "solution linked" button, pop-up "static passwords to authenticate users"
dialog box, enter in the dialog box Login static password, click OK, the system prompts the token solution linked to
success.

Tip: If you do not bind the user token into the module, the interface displays "unbound over token, cannot be
de-linked operation!"

Token users do not report the loss, suggesting that "there is no report of loss of tokens cannot be the solution
linked operation!"

While setting the verification method as “using AD password to verify” in “management center” ->
“Configuration” -> “User Portal Configuration” -> “Login password”, after pressing “un-link” button,
you will need to input your AD password instead of the static password.

Copyright © Feitian Technologies Co., Ltd.


12
Website: www.FTsafe.com
OTP Server User Portal User Manual

6.8 Token activation

The module has an active function for c300 token, can make grades get an activation code to activate the
token via input. Specific operations are as follows:
Click on the feature list under the "token active" hyperlink, enter the token activation interface, enter the
activation order grades, click the "Get Activation Code" prompt box pops up activation code.

Tip: If the input does not exist to make grades activation function or activate the function exists but has been
activated, when obtaining an activation code, the system will prompt acquisition fails.

6.9 Get an unlock code

The C300 has a level unlock code when using token, if the power to enter the PIN code error exceeds a
certain value, will cause the token lock, use the level to unlock the code to unlock the token to get the unlock code
module level is to users get an unlock code functions.

Get an unlock code, unlock code based on a token into two different modes, one is the time to type the
unlock code to unlock token, one is a challenge token type unlock code to unlock.

Time type unlock code to unlock token, click on the feature list under "Get an unlock code" hyperlink,
entered obtain an unlock code interface, select To unlock token, click the "Get" button, pop-up "static passwords
to authenticate users." dialog box, enter the login user in the dialog box static password, click "OK" button, the
system gives the token level unlock code.

Challenge token type unlock code to unlock, unlock code when you get level interface, select the type of
token, there will be "challenge code" input box, enter the token in the input box comes with unlocking challenge
code, click on the "Get "button, pop-up" static passwords to authenticate users "dialog box, enter the login user's
static password in the dialog box, click on the" OK "button to get to the token level unlock code.

Tip: If you do not bind the user level unlock code does not bind token or tokens into the module, the interface
displays "unbound mode over the level unlock code to enable the C300 token, one cannot get a token
level unlock code!"

While setting the verification method as “using AD password to verify” in “management center” ->
“Configuration” -> “User Portal Configuration” -> “Login password”, after pressing “Get” button, you
will need to input your AD password instead of the static password.

Copyright © Feitian Technologies Co., Ltd.


13
Website: www.FTsafe.com
OTP Server User Portal User Manual

6.10 Get two unlock code

When there are two unlock codes C300 token token use, after having been locked level, the level continues
unlock code input errors, resulting token secondary lock. Two tokens need to use two locks unlock code to unlock
it.

Get two unlock code, unlock code based on the token two different modes are divided into two types, one is
the time to type the unlock code to unlock token, one is a challenge token type unlock code to unlock.

Time type unlock code to unlock token, click on the feature list under "Getting two unlock code" hyperlink,
get the two to enter the unlock code interface, choose to unlock token, click the "Get" button, pop-up "static
passwords to authenticate users." dialog box, enter the login user in the dialog box static password, click OK, the
system gives the token secondary unlock code.

Challenge token type unlock code to unlock, unlock code when obtaining a secondary screen, select the type
of token, the "challenge code" input box, enter the token in the input box comes with the challenge code, click on
the "get" buttons, pop-up "static passwords to authenticate users" dialog box, enter the login user in the dialog
box static password, click "OK" button to get to the token secondary unlock code.

Tip:

1. If you do not bind the user token or no token secondary binding unlock code into the module, the
interface displays "Over two unbound mode is enabled unlock code C300 token, you cannot get a token
two level unlock code!"

2. While setting the verification method as “using AD password to verify” in “management center” ->
“Configuration” -> “User Portal Configuration” -> “Login password”, after pressing “Get” button, you will
need to input your AD password instead of the static password.

6.11 Modify the emergency password

This module provides users with a password on boot bindings emergency contingency password reset token
functionality.

Click on the feature list under the "Modify emergency Password" hyperlink, enter the password to modify the
emergency interface, choose to modify the emergency password token password in order to fill in the former
emergency at the interface, the new password and confirm the emergency contingency password, click on the
"Edit" button, modify the emergency password.

Copyright © Feitian Technologies Co., Ltd.


14
Website: www.FTsafe.com
OTP Server User Portal User Manual

Tip:

1. The length of the emergency password and password must be the same length of the current token.

2. The user is not bound to bind token token or password is not set contingency into the module, the
interface displays "unbound had enabled the emergency password tokens, emergency password
cannot be modified to operate!"

6.12 Mobile Token distribution

This module provides users with mobile token binding and distribution operations for binding token, follow
these steps:

(1) "Mobile Token distribution" click a hyperlink in the list of functions under the switch to mobile token
distribution interface.

(2) "Application Bind" button click interface, pop-up "static passwords to authenticate users" dialog box,
enter the user interface in the static password, click on the "OK" button, the system under the management
center of the "enterprise" or "under the user's organization "does not distribute any bind a cell phone token.

Tip:

1. If there is binding and not distributed under the token user is not allowed to apply for binding, if it
continues to apply binding, need to complete the distribution of all mobile phone users under the token.

2. While setting the verification method as “using AD password to verify” in “management center” ->
“Configuration” -> “User Portal Configuration” -> “Login password”, after pressing “OK” button, you will
need to input your AD password instead of the static password.

(3) Token binding is successful, the token can be distributed on the phone, "distribute" click button on the
screen, enter the distribution interface, you can choose the online distribution can also choose Offline
Distribution:
Online distribution interface of the fields have the following meanings:

Token: This field does not allow editing, the display is selected to make grades.

Identification code: Enter the phone token code for the token to bind up the phone.

Distribution method: if selecting “Online distribution” an online QR code will be generated. Online
distribution is safer, but required the to be activated token has Internet connection. If selecting “offline
distribution”, an offline QR code will be generated.

Activate Password: Activation password generated in three ways: a randomized, default and manual input.

Copyright © Feitian Technologies Co., Ltd.


15
Website: www.FTsafe.com
OTP Server User Portal User Manual

Select random, then activate password when distributed randomly generated by the system; choose the default,
the activation password displays "Configuration Management -> Mobile Token distribute Configuration" enabled
by default password set on the interface; select manual input, a "set at the bottom of the interface activate
password "field can be set manually activate a password.

Offline distribution interface of the fields have the following meanings:

Token: This field does not allow editing, the display is selected to make grades.

Identification code: Enter the phone token code for the token to bind up the phone.

Activate Password: Activation password generated in three ways: a randomized, default and manual input.
Select random, then activate password when distributed randomly generated by the system; choose the default,
the activation password displays "Configuration Management -> Mobile Token distribute Configuration" enabled
by default password set on the interface; select manual input, a "set at the bottom of the interface activate
password "field can be set manually activate a password.

(4) Select the appropriate type of distribution, and in accordance with the requirements of the distribution
interface, fill in the information, "distribution" click interface on the button to display the distribution of results.

6.13 SMS Token application

Due to the special nature of SMS token, the user must first bind to obtain a password, so bind operation
cannot be performed in the "Bind user and token" module, SMS Token application module is to provide users with
SMS token bound function.

Click on the feature list under "SMS Token application" hyperlink, the SMS token application interface,
"Application Binding" click interface, pop-up "static passwords to authenticate users" dialog box, fill in the user's
static password and click "OK "button, the system prompts the binding is successful.

Note: While setting the verification method as “using AD password to verify” in “management center” ->
“Configuration” -> “User Portal Configuration” -> “Login password”, after pressing “Application
Binding” button, you will need to input your AD password instead of the static password.

6.14 Software token distribution

This module provides the user independent application software token binding, as well as the token
distribution operations.

Copyright © Feitian Technologies Co., Ltd.


16
Website: www.FTsafe.com
OTP Server User Portal User Manual

(1) Click on the feature list under "Software Token distribution" hyperlink, enter the software token
distribution interface.

(2) Click on "apply Bind" button, pop-up "static passwords to authenticate users" dialog box, enter the user
static password in the dialog, click on the "OK" button, the system automatically from the Administration Center
under the "Enterprise" or "user's organization "under undistributed arbitrarily assigned a software token to the
current user.

Note: While setting the verification method as “using AD password to verify” in “management center” ->
“Configuration” -> “User Portal Configuration” -> “Login password”, after pressing “apply bind” button,
you will need to input your AD password instead of the static password.

(3) After the token is bound to have a "distribution" action button, click on the "distribution" button to switch
to the distribution interface, select PIN code generation mode, choose to distribute the results of the download,
click on the "distribution" button to make distribution card.

Tip: User Management Center has been bound in software token, the user is not required to apply for the
portal bind operations can directly distribute them.

6.15 Transaction Signature verification test

This module provides users C300 token transaction signature authentication testing.

(1) Click on the feature list under "transaction signature verification test" hyperlink, enter the transaction
signature authentication test interface.

(2) Enter the "virtual card" in any four-digit or six-digit, enter the amount of the transaction in the "virtual
amount", the "Transaction Password" item then appears under the interface, the digital stitching virtual card
number and the amount of virtual C300 up to the corresponding input of the token, the transaction generated
password.

(3) The resulting "trading Password" enter into the transaction password box, click on the "authentication
test" button for authentication.

Tip: If the user is not bound over C300 token into the module, it will prompt "! Unbound over C300 token,
token authentication test operation cannot be performed."

6.16 Users to modify the basic information

This module provides users with basic information about the user to modify the function, as follows:

Copyright © Feitian Technologies Co., Ltd.


17
Website: www.FTsafe.com
OTP Server User Portal User Manual

(1) Click on the feature list "user basic information to modify the" super link, switch to basic information
about the user interface changes.

(2) Modify the basic information to fill in the user interface requirements are as follows:
Real name: the name of the current user account real length of 0-64 bits of any character content.

E-mail accounts: the current user's email account, the length of any combination of 0-64 characters
letters, numbers or special characters such as @ .-.

Phone number: Enter the user's phone number, 0-20 digits.

(3) Modify the user's information, click on the "Edit" button, the system prompts modified successfully.

Note: While setting the verification method as “using AD password to verify” in “management center” ->
“Configuration” -> “User Portal Configuration” -> “Login password”, after pressing “apply binding”
button, you will need to input your AD password instead of the static password.

Copyright © Feitian Technologies Co., Ltd.


18
Website: www.FTsafe.com
OTP Server User Portal User Manual

Abbreviations and Terminology Appendix I.

Abbreviations Explanation Remarks


and
Terminology
OTP Dynamic passwords or one-time password Using a dedicated
hardware device or
a
software-generated.
HOTP Event-based dynamic password OTP c100 / c400
token can generate
HOTP.
TOTP Time-based dynamic password OTP c200 / c300
token can generate
TOTP.
CR-OTP Challenge-response dynamic password OTP c300 token can
generate CR-OTP.
RADIUS Remote Authentication Dial In User Service An identity
authentication
protocol
PIN Personal Identification Number Usually include soft
PIN and equipment
PIN.
File Type
.xml file Save token seed file Before
.tnk file authentication need
to import OTP
Server Manager
system.
.lic file Save authorization information file Use when installing
the OTP Server
authentication
system.
Token C100 related
Authentication Event counter authentication server used to
base verify HOTP
Authentication The maximum number of consecutive
window authentication attempts authentication server,
the default value is certified after base 40 times.
Synchronization The maximum number of continuous
window synchronization attempt authentication server,

Copyright © Feitian Technologies Co., Ltd.


19
Website: www.FTsafe.com
OTP Server User Portal User Manual

the default is certified base after 200 times.


Synchronization Dynamic password generated by the token to
status authenticate successful state.
Asynchronous Dynamic password generated by the token
state cannot be certified success, but success can be
synchronized state.
Ultra Dynamic password generated by the token
asynchronous cannot be successful synchronization status.
state
Err 1 This symbol indicates a token display token no
seeds (seeds of tokens in programming time
token seed lost after the failure or success of
programming)
Err 2 This symbol indicates a token display button is
pressed timeout (over 15 seconds)
Token C200 related
Authentication Time Factor TOTP authentication server used to
time verify that the current time and the drift time of
the token, and
Authentication Authentication server authentication attempts
window maximum continuous time offset, the default
authentication time is three minutes before.
Synchronization The authentication server for the maximum
window continuous time offset synchronization attempt,
after the default authentication time is 20
minutes.
Synchronization Dynamic password generated by the token to
status authenticate successful state.
Asynchronous Dynamic password generated by the token
state cannot be certified success, but success can be
synchronized state.
Ultra Dynamic password generated by the token
asynchronous cannot be successful synchronization status.
state
Token C300 related
PIN OTP c300 token is used to authenticate the Here is the
user's personal identification number. instruction card
device PIN.
Transaction OTP c300 token is a string of data is calculated
signature based on transaction information provided by
the user.
Verify OTP c300 token can be used to verify the
authentication authenticity of the authentication server.

Copyright © Feitian Technologies Co., Ltd.


20
Website: www.FTsafe.com
OTP Server User Portal User Manual

server
Mutual OTP c300 token is not only to help users verify
authentication the authentication server, the authentication
server can also be used to help authenticate the
user.
OTP Server-related
Authentication For receiving user authentication request and
Server perform user authentication, and then returned
to the user authentication result of the program
Authentication After receiving the authentication request is
agent passed from the application to the
authentication service, and then receives the
authentication result from the authentication
server and passed to the application program.
Binding Token Associate the token and the user
Token seed Used to calculate the dynamic password token
key
Communication Between authentication and authentication for
shared key the proxy server to encrypt and decrypt a key
communication and information
Token ID Serial number or bar code on the back of the
token

Copyright © Feitian Technologies Co., Ltd.


21
Website: www.FTsafe.com

You might also like