Workflow 2: Configuring a Crescendo Key for HOTP or TOTP

HID Crescendo Key devices can store three distinct OTP configurations on the same device. Each of these configurations are stored in a logical area of the device called a Slot. Each OTP Slot, except for Slot 1, can be configured for either HOTP (event-based) or TOTP (time-based) OTP algorithms for use in multi-factor authentication schemes (MFA). (Slot 1 can only be configured for HOTP.)

HOTP is an OTP algorithm that specifies event-based One Time Password codes. This means that each code that is generated is valid and usable until the next code is generated.
TOTP is an OTP algorithm that specifies time-based One Time Password codes. This means that each code that is generated is only valid for a short period of time, typically 30 seconds. After this, the generated code is invalid, and a new code must be generated.

Important: OTP Slots are only configurable on Crescendo Key devices. Crescendo Key devices have a built-in physical button that, when pressed, will generate an OTP in any text field based on the first configured OTP Slot. Pressing this button is only valid for Crescendo Keys on contact mode , and not for 2300 smart cards or Crescendo keys in contactless mode.

Note: The three Slots are secured by the built-in button for proof of human presence. Slot 2 and Slot 3 are additionally secured by the PIN.

To configure Crescendo Key OTP Slots for HOTP or TOTP functionality, perform the steps outlined in the following sections: