![]() ![]() Creating a QR code is a “nice to have” (I only have to type in those 32 letters once, so I did without that).Ĭrozap’s and Dan’s software does the clever bit of creating the TOTP credential from the Symantec VIP credential.Īs described above, I’m doing this on a Raspberry Pi 2B which was update to date as of 30th May 2019. TOTP credentials are usually 32 letters, often represented as a QR code. VIP credentials start with 4 letters and then 8 digits. When you initialise Symantec VIP, it generates a new random credential, but not one compatible with TOTP. To add a new credential to a TOTP app we therefore need a compatible credential. ![]() The 6 digit codes that get generated by authenticator apps are created based on 2 factors: the current time (obviously) and a credential. The instructions provided by Dan are pretty straightforward, but I hit a missing dependency that was required to make it work on my RPi 2B. Symantec VIP is actually just a layer over TOTP and thanks to a clever bit of work by Dan Lesnki (in turn forked from Cyrozap’s project) it’s possible to do away with the Symantec VIP application and use a “standard” TOTP app, such as Google Authenticator or Authy. So, what’s the problem? I resent having a “special” Symantec app on all my devices because, ultimately this is just a layer over the standard Time-based One Time Password (TOTP), as used by Google Microsoft, Facebook and countless others. (Why pseudo-two-factor? Because the code is generated from a secret, it’s really just a fancy password.) This is an example of pseudo-two-factor authentication: I have my password, something I know, as the first factor and something I have, the app that generates the code, as the second factor. When logging in to the system, I have to run the app to get the 6 digit code and then type it in, along with a username and password. For those that haven’t come across this before the app displays a 6 digit numeric code that changes every 30 seconds. Reach out to them and let us know if you run into any problems.Occasionally, I need to log in to a system that requires the use of a Symantec VIP code. The credential ID with the VIP Access app cannot be changed. Either way, they control the mapping between their users and VIP credentials. They may also provide you with a self-service portal where you can do it yourself if they're set up to do that. The business that advised you to use the VIP Access app needs to assign that credential ID to you within their system. There is no way for me to enter their Credential ID into the program so that it will generate custom security codes for their business. It is not the Credential ID for the company I am trying to validate my ID with. When I open VIP Access I see a small window open with a credential ID already loaded. Gavin - to clarify, when you launch VIP Access Desktop, you do not see a credential ID? I cannot "scan in" the company's matrix code to get the program to enter the correct Credential ID for the company, because the App is running on my computer and I cannot scan the computer screen! Whoever came up with this App needs to go back to high school, because it DOESN'T WORK!Įmail confirmed. There is actually no user interface to allow me to change any of these details. The downloaded App has no interface to allow me to put in the enterprise ID for the company that is using VIP Access for ID verification, therefore the program generates a security code that they cannot recognise. I have had the same problem with VIP Access Desktop for Mac. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |