TOTP Key Sharing

BWC

Hi,

the internal settings of a SMA 100 series have an option to Allow Sharing TOTP Key (Enable this option, you can use a exist key to bind the account).

How is this working? I have the case in which one user in two domains would like to share the same Google Authenticator key. I did not found a way to manually copy the Token seed information from one to another user.

It's just to keep it very simple if possible and don't overwhelm the user with too much possibilities. If this is not what it seems to be the user has to live with two Token in the Authenticator App.

--Michael@BWC

MasterRoshi

@BWC, this feature is documented in the link below.

https://www.sonicwall.com/techdocs/pdf/sma-10-2-feature-guide.pdf

BWC

Hi @Masayuki@MasterRoshi

thats great, I wasn't aware that this feature is well documented, wasn't even looking to be honest because it has to enabled on the Internal settings page which is usually a not well documented part.

Will try tomorrow on a new deployment.

--Michael@BWC

Vijay_Kumar_KV

Refer this KB for SMA100 TOTP configurations

https://www.sonicwall.com/support/knowledge-base/totp-configuration-user-discretion-in-sma-100-series/190126211359131/

https://www.sonicwall.com/support/knowledge-base/how-to-configure-two-factor-authentication-using-totp/190201153847934/

Arthur

Is there a known issue with OTP binds not syncing between HA appliances? I have configured this on a TZ500 HA pair and SMA410 HA pair. When failing over to the HA device, the OTP code is not accepted.