Secure Mobile Access 12.4 Administration Guide

Configuring an Authentication Server for One-Time Passwords

If the email addresses to which you want to deliver one-time passwords are in an external domain (such as SMS addresses or external web mail addresses), you must configure your SMTP server to allow passwords to be sent from the appliance to the external domain, as described in Configuring SMTP to Deliver One-Time Passwords.

For each authentication server, you must also specify the directory attribute that stores the email addresses to which OTPs are sent. You must specify a primary attribute; alternatively, you can specify a secondary attribute that is queried when the first one cannot be found.

To configure an authentication server to support one-time passwords

  1. In the AMC, navigate to System Configuration > Authentication Servers.

  2. Click Edit next to the AD (Microsoft Active Directory or Microsoft Active Directory Tree), LDAP, or local authentication server you want to reconfigure.

  3. Select a Credential type, if applicable.

  4. Click Continue.

  5. Expand the Advanced area,

  6. Scroll down to the One-Time Passwords section and select Use one-time passwords with this authentication server.

  7. Enter the directory attribute for the email address to which one-time passwords will be sent. If the primary attribute exists on the authentication server, it is used, otherwise the secondary attribute, if specified, is queried.

Was This Article Helpful?

Help us to improve our support portal

Techdocs Article Helpful form

Techdocs Article NOT Helpful form

  • Still can't find what you're looking for? Try our knowledge base or ask our community for more help.