Configure the SMS Backup Authentication Settings
To configure the AAA Server settings for SMS backup authentication, you can edit the corresponding registry settings using the Microsoft Windows Regedit tool:
| Registry Key | Type | Description |
|---|---|---|
| SMSActivationChallenge | REG_SZ |
Used to send the RADIUS attribute Challenge-State (string, radius attribute 24) with the SMSActivationChallenge value. Default: none - no message is sent |
| SMSActivationMsg | REG_SZ |
Used to send the RADIUS attribute Port-Message (string, radius attribute 18) with SMSActivationMsg value. Default: none - no message is sent |
| SMSActivationRadiusReplyReject | DWORD |
Used to reject SMS authentication. If an SMS OTP is generated, the AAA Server rejects the request.
Default: 0 - activation is not rejected |
| SMSOTPLifetime | DWORD |
Duration (in seconds) of the SMS OTP lifetime. After this time expires, the OTP is deleted and a new authentication request (with PIN code) is necessary to obtain a new SMS OTP. Default: 0 - SMS OTP has unlimited validity |
| SMSOTPNumberOfTries | DWORD |
Number of attempts the user can incorrectly enter the SMS OTP before the OTP is deleted. After the number is reached, the user has to enter the PIN code to obtain a new SMS OTP.
This value must be inferior to the maximum number of tries defined at the group level. If the value is superior, this setting is not taken into account. To disable this setting, enter 0. Default: 0 - the user is allowed the number of tries configured at the group level |
- On 32-bit platforms, the path is:
HKEY_LOCAL_MACHINE\SOFTWARE\ActivCard\ActivPack\ActivPackServerV6
-
On 64-bit platforms, the path is:
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\ActivCard\ActivPack\ActivPackServerV6
Note: If the keys are not present, you need to create them, using the information provided in the table.
