Hard Tokens

This scenario occurs if both the user and the RADIUS client are configured to use Hard Token OTPs.

Based on the configuration of your VPN client, you can either use a single Hard Token authentication or compound Hard Token authentication.

When using compound Hard Token authentication, a user logs into the VPN by entering their Active Directory (AD) password, in addition to an OTP generated by their Hard Token. For example, given an AD password of 'password' and an OTP of '123456', the user enters 'password123456' in the password field of their VPN client.

Supported authentication protocols: PAP.