Hard Tokens

A hard token (also known as hardware token) is a device that generates an OTP and can be used in conjunction with a password as an electronic key to access something. Hard tokens come in many different device types, it could be a key fob which can be clipped onto a keyring or in a credit card form which can be stored in a wallet.

•HOTP stands for "HMAC-based One-time Password", which is an event-based OTP

•TOTP stands for "Time-based One-time Password"

Both HOTP and TOTP can be generated by a hardware (hard tokens) or software (for example, ESA Mobile App).

ESA supports all OATH compliant hard tokens, but ESET does not supply them. The hard token HOTPs can be used in the same way as the HOTPs generated by the mobile app or sent to the user via SMS. Scenarios where this may be useful is to support legacy token migration, for compliance or if it fits with the company policy.

The token data can be imported into ESET Secure Authentication using an XML file in the PSKC format. Most hard token vendors supply you with a PSKC file when you purchase your hard tokens.

We recommend verifying with the vendor the hard token you are about to use is OATH-compliant.

To use and manage hard tokens, see instructions below.

Enable and Import Hard Tokens

1.In the ESA Web Console, click Hard Tokens.

2.Select the Enabled check box if it has not been selected by default.

3.Click the Import Hard Tokens button.

4.Select the file to import. This should be an XML file in the PSKC format. If such a file was not received from the hard token vendor, contact the vendor. If the XML file is password protected or protected by an encryption key, type the password or encryption key (HEX or base64 format) to the Password field in Import Hard Tokens window.

5.Click the Import tokens button.

6.A result notification will pop up indicating how many hard tokens were imported and the imported hard tokens will be displayed.