Posted on September 16, 2009 by mbrostrom

NSD1175 How to configure One Time Password Server to use both Pledge and SMS

Fact

Nordic Edge One Time Password Server 2.0

Nordic Edge Pledge

Situation

Some users will be using Pledge others SMS to login

Solution

Prerequisites:

Nordic Edge One Time Password Server installed and configured to use SMS to send OTP


Configuration:

Decide in which attribute in your LDAP directory you want to store the users Pledge Profile OATH key. In this case we store it in the attribute "carLicense". Make sure that you starts with 0x (for HEX) and ends with :0 (the counter), 0xOATHKey:0.

  • Start OTP Configurator

  • Go to "Radius & Clients"

  • Mark your client and choose "Edit Client"

  • Choose "New" to create a new User Database for Pledge

  • Select the option for "Database is for OTP Mobile/Card users only"

  • Select the option for "Uses external cards"

  • "MobileKey Attribute" choose the attribute where the users Pledge Profile OATH key are stored

  • Extend the "Search Filter End" to include the MobileKey Attribute

  • Choose "New" to create another database, a Database Group

  • As "Database Type" choose "Database Group"

  • Add your databases for Pledge and SMS

  • Make sure that the database for Pledge is the first one in order

  • Make sure that your client points to the Database Group

  • Check that your client points to the Database Group

  • Go to "Plugin manager"

  • Mark "External OATH and select "Enable" and "Visible"

  • Go to "External OATH"

  • Make sure that the "OTP Length" is set to 6

With this configuration, the database group will first see if the user has an OATH key stored in the attribute "carLicense". If so, the user will need to use Pledge to login. If not, the database group will search the next database that will check if the user has a valid mobile phone number and send the OTP as an SMS.

Disclaimer

The origin of this information may be internal or external to Nordic Edge™. Nordic Edge™ makes all reasonable efforts to verify this information. However, the information provided in this document is for your information only. Nordic Edge™ makes no explicit or implied claims to the validity of this information. Any trademarks referenced in this document are the property of their respective owners.
Nordic Edge Support – www.nordicedge.se

Download article as PDF

Comments are closed.