SECURING
Enable TOTP on Domino® servers through a Configuration Settings document.
Procedure
1. From the Domino Administrator, click theConfiguration tab and then expand the Messagingsection.
2. Choose Configurations.
3. Click Add Configuration to create a new Configuration Settings document. Or, select an existing one and click Edit Configuration.
4. Click the Security tab.
5. Complete the following fields in the Multi Factor Authenticationsection.
Users are shown the scratch codes right after they set up TOTP successfully. After a scratch code is used, it can't be used again.
Note: The ID vault server supports downgrading the HMAC algorithm by one level, for example, from HMAC-SHA256 to HMAC-SHA1. Therefore, we have kept the default algorithm as HMAC-SHA256 to support TOTP clients like Google Authenticator. Authy and Microsoft Authenticator support HMAC-SHA1 currently and they work against the server enabled for either HMAC-SHA1 or HMAC-SHA256.
Parent topic: Configuring TOTP authentication Previous topic: 1. Issuing a Multi-Factor Authentication Certificate Next topic: 3. Enabling TOTP authentication on servers
Related concepts Authenticating web users against the Notes ID passwords in the ID vault