OTP authenticates a user for a single login or session. OTP supports strong two-factor authentication based on IETF standards, and supports both time and counter-based password. OTP requires access to something a person has (such as a specific mobile device) as well as something a person knows (such as a PIN). OTP is not vulnerable to replay attacks, so it is more secure than a traditional static password.
OTP-based authentication is available for App and DB VMs. If you chose to enable OTP for a user, it is enforced by users registered with the Tenant Administrator role. The users created as primary, secondary, and auditor roles do not support the use of OTP.
You can use SSH to access App and DB VMs with OTP. During the SSH access, the Solaris environment prompts you for your Solaris password, then for the OTP from your mobile authenticator application. You can use the Oracle Mobile Authenticator App or the Google Authenticator App, and you can freely download them from the Apple iOS and Google Android App stores. Oracle MiniCluster's OTP conforms to the HMAC-based and time-based specifications for a OTP, and will work with any authenticator application that conforms to these specifications.
You can use the Oracle Mobile Authenticator App or the Google Authenticator App, and you can freely download them from the Apple iOS and Google Android App stores.
If an existing user with the Tenant Administrator role will use OTP, you must delete the user account and create a new one. For instructions, see Create a New MCMU User (BUI).
To use OTP, your user account must be configured with the Tenant Administrator role. See Step 3 in Create a New MCMU User (BUI).
Type a new password. See MCMU Password Policies.
The secret keys for all available VMs are displayed.
Include the spaces in the OTP key.
After you enter this information, the Oracle Mobile Authenticator starts to generate OTP codes every minute to access the VM.
For example, type your Oracle Solaris password and the OTP that was provided.
# ssh Dena_tadmin@192.0.2.0 MiniCluster Setup successfully configured Password: OTP code: Last login: Mon May 17: 9:40:48 2017 ABC Corporation SunOS5.11 11.3 May 2017 MiniCluster Setup successfully configured