Hard Tokens
This scenario occurs if both the user and the RADIUS client are configured to use Hard Token OTPs.
Based on the configuration of your VPN client, you can either use a single Hard Token authentication or compound Hard Token authentication.
When using compound Hard Token authentication, a user logs into the VPN by typing their Active Directory (AD) password, in addition to an OTP generated by their Hard Token. For example, given an AD password of 'password' and an OTP of '123456', the user types 'password123456' in the password field of their VPN client.
Supported authentication protocols: PAP.