Cybersecurity
DevOps Cloud (ADM)
IT Operations Cloud
Summary
TOTP method failed to display a QR code image when the device was not registered.
Products
Access Manager (NAM)
Environment
Access Manager 5.0.2.1
Situation
TOTP method failed to display a QR code image when the device was not registered.
Identity Server with debug level logged the error message to the 'catalina.out' file as below.
<amLogEntry> 2022-10-21T10:52:31Z DEBUG NIDS Application:
Method: TOTPAuthenticationClass.B
Thread: https-jsse-nio-10.1.1.123-8443-exec-15
null not registered with TOTP </amLogEntry>
Cause
User Store was the Active Directory Lightweight Directory Services. The sAMAccountName attribute was hidden. CN was used instead of sAMAccountName attribute.
Resolution
TOTP needs the value of the sAMAccountName attribute. Also, the AD-LDS must replicate the value of the sAMAccountName attribute from the AD.
URL Name
KM000011736