What is an authentication token device?
A one-time passcode (OTP) authentication hardware token is a small device with an internal passcode generator that can be associated with a Two-Step Login account. With the press of a button, it will generate and display a single-use passcode to complete the second step of a login.
A token device that works with the University of Iowa's Two-Step Login system is shown above. The green button generates a passcode that is valid for 30 seconds. Pressing the button again generates a new passcode.
- The token device is designed to attach to a key chain
- Tokens cannot be shared, as they are uniquely associated with a HawkID account
- If a token is lost or stolen, there is no way to determine it is associated with a HawkID account. If the token is lost with a set of physical keys, it may be possible to identify its owner. But the device cannot be used by anyone who does not know the associated HawkID and password