-Magnus- Super Contributor.
Super Contributor.
538 views

Google TOTP -> NAM and SSPR coexistence


Is it possible to have NAM and SSPR TOTP coexistence ?

I'm trying to use SSPR to enroll users with Google TOTP, (Much nicer
than NAM enrollment)

I have configured both NAM and SSPR to store the secret in CarLicense
attribute in AD.

SSPR:
Token Storage Method: Base32 secret
Encrypt OTP secret: true
OTP Secret Identifier is constructed to be similar.

But how do I set those encryption parameters on TOTP Class in NAM ?

The strings look like this depending where I enrolled the device:

NAM:
kn2WKOYD0RwRM2VACgYchrxMTErThp9V
SSPR:
Wn2k7lh1bW4bincsCntZoT72yY/dklRyCOztmgiglyY=


regards Magnus


--
magnus
------------------------------------------------------------------------
magnus's Profile: https://forums.netiq.com/member.php?userid=283
View this thread: https://forums.netiq.com/showthread.php?t=55957

0 Likes
1 Reply
AutomaticReply Absent Member.
Absent Member.

Re: Google TOTP -> NAM and SSPR coexistence

magnus,

It appears that in the past few days you have not received a response to your
posting. That concerns us, and has triggered this automated reply.

These forums are peer-to-peer, best effort, volunteer run and that if your issue
is urgent or not getting a response, you might try one of the following options:

- Visit http://www.netiq.com/support and search the knowledgebase and/or check
all the other self support options and support programs available.
- Open a service request: https://www.netiq.com/support
- You could also try posting your message again. Make sure it is posted in the
correct newsgroup. (http://forums.netiq.com)

Be sure to read the forum FAQ about what to expect in the way of responses:
http://forums.netiq.com/faq.php

Sometimes this automatic posting will alert someone that can respond.

If this is a reply to a duplicate posting or otherwise posted in error, please
ignore and accept our apologies and rest assured we will issue a stern reprimand
to our posting bot.

Good luck!

Your NetIQ Forums Team
http://forums.netiq.com



0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.