Enable OTP

mrshahin

Hi,

How can I enable the OTP via mail for the default admin account on sonicwall nsa 3650?

I know already that I can create a new local account and then enable the OTP for this new account but I dont know how to do this with default admin account.

Any suggestion?

Thanks

shiprasahu93

@mrshahin,

Yes, that is correct. You can bind the local admin account with an authenticator on phone/PC and use the generated code on that authenticator to complete the MFA.

Please refer to the KB below for more details.

https://www.sonicwall.com/support/knowledge-base/how-to-configure-two-factor-authentication-using-totp-for-https-management/190201153847934/

Thanks!

shiprasahu93

@mrshahin,

For OTP via mail, we need to associate a username with an email address and we cannot do that with the built-in admin account. We can enable TOTP for the admin account though. Otherwise, you can create a local user, add it to SonicWall Administrators Group and then enable OTP via mail on it.

Thanks!

mrshahin

@shiprasahu93 Thanks as always for your reply,

If I understood this correctly the TOTP will works as MFA for the local admin account and we can use it instead of OTP that send each time a rendom genrated number. correct?

Thanks

PPI_MIS

If you create a 'new' admin account to use OTP via email how do you disable the built in admin as not having OTP on that account defeats our purpose of enabling.

Thanks