...
Set up OATH pre-programmed hardware tokens with Azure MFA
There are 2 ways you can set up pre-programmed hardware tokens with Azure AD:
- Use Azure AD Portal
- Use SafeID Token Service
Azure AD Portal
...
| Expand | ||||
|---|---|---|---|---|
|
...
- Assign tokens to users
- Upload tokens to Azure AD
- Activate Tokens
...
|
...
|
In step 2, you will need to upload the secret file of the hardware tokens on to Azure AD
In step 3, you will need to activate tokens by providing a verification code from the token, one by one.
...
|
...
|
...
SafeID Token Service
As you will see, the facility provided by Azure AD is very basic and not flexible. It does not provide functions for you to quickly assign only one token to a user or to reassign a token, for instance. If you have a small number of hardware tokens to manage, then it is OK to use the Azure AD portal. However, if you have a large number of hardware tokens to manage, then we would recommend the SafeID Token Service
SafeID Token Service provides a Web-based GUI console that allows customers to manage the full life cycle of the SafeID hardware tokens by simply pointing and clicking. You can assign, activate, deactivate, unassign, delete and replace a token, etc with one single click.
Click here for detailed instruction on how to manage hardware tokens with SafeID Token Service
Set up OATH programmable hardware tokens with Azure MFA
A programmable hardware token is essentially a substitution for the Microsoft Authenticator app, and the process to set up a programmable hardware token is similar to setting up the Microsoft Authenticator app.
You can use your Android or iPhone to program the hardware token if your phone is NFC enabled. You can also use your Windows PC or laptop to program the hardware tokens. If you are going to use Windows PC or laptop, then you will need an NFC smart card reader.
The steps below summarise the process:
- Download the SafeID Programmer app onto your phone or PC
- Sign in to your AAD account, and add a third-party authenticator app
- Obtain the QR code of the authenticator app
- Use the SafeID Programmer app to burn the QR code into the hardware token
...
| Expand | ||||
|---|---|---|---|---|
|
...
|
...
|
...
|
...
|
Related Articles
Click here for more details on how to use hardware tokens in Office 365 and Azure AD login.
...