FIDO Security Keys

OTP Usage

1. Overview

This document shows how to apply OTP functions as a second factor authentication with Feitian tools and keys. Using FT Authenticator on PC and on Smart phone, using ePass FIDO-NFC K9 plus, using Github login process as an example.

2. Get ready

Please get the following things ready before the process:

A FEITIAN FIDO key with OTP functions
Download and install FT Authenticator Window, Android or IOS

3. Start to enable 2FA

Before using OTP as 2FA, the 2FA must be enabled in Github.

3.1 Get QR Scan code form website

1. Open Github, login to your account, click account icon and then click “Settings”.

2. In setting page, click “Account security”, if you have not enable 2FA yet, you will see the figure below. Click “Enable two-factor authentication”.

3. To enable 2FA, you must select one authenticate method to set up. In our case, we are using FT Authenticator as the authentication app. Click “Set up using an app”.

4. Choose either “Download”, “Print” or “Copy” to get the recovery code, and then click “Next”.

The QR code will be shown on the screen, please keep this page open.

3.2 Finish setting on FT_Authenticator in PC or smart phone

1. Open FT_Authenticator at Android or IOS devices, (In this example, using IOS) click “Add”.

2. Scan the QR code on from Github. Choose where to burn OTP seed in(mobile or key).

Click “mobile” to burn in this mobile, The tool jump to the account page and you can see your OTP Github Account.

You can also choose to burn in key.

After that, you can use the key to get OTP value.

3. Get TOTP value

If you burn the OTP seed to moblie. you can touch the account to get the OTP value.

If you burn the OTP seed to key, you can connect your key to other machines and touch the key to get OTP value in a txt output environment.

4. Use this value to enable 2FA login: Move to the QR code page form Github, enter the OTP value and click “Enable” .

You are done!

3.3 Change 2FA configuration

You can change 2FA configurations.
Make sure your two-factor authenticator is enabled, then find Authenticator app and click “Edit”.

Click ‘Edit’at Authenticator app to re configure app authentication. You can also edit other 2FA methods security keys or SMS number.

The next step is same with section 3.1, started form step 3, please refer that.

4. Set OTP method in other major website

Github:

https://docs.github.com/en/free-pro-team@latest/github/authenticating-to-github/configuring-two-factor-authentication

Microsoft

https://docs.microsoft.com/en-us/azure/active-directory/user-help/user-help-auth-app-add-non-ms-account

Google

https://support.google.com/accounts/answer/1066447?co=GENIE.Platform%3DAndroid&oco=0