Special Android, iPhone, or Windows applications (i.e. Token2 Burner app) should be used to "burn" the secret hash seeds. The apps require an NFC module to operate. iPhone apps only work with models with part numbers ending with "-i" (i.e. C301-i) and only with iPhones newer than iPhone 8 and iOS version 13 or higher.
This table below provides a list of the available burner applications for different models of Token2 programmable tokens. The table is interactive: you can choose the token model in the first column, then the platform in the second column to see if the combination is supported.
Cross-platform (Python) solution has been tested with Windows 10/11, Ubuntu 20.04 and macOS Big Sur, but should, in theory, work with any *nix platform.
Choose a token model | Choose platform | |
---|---|---|
miniOTP-1, C105 | Android | Google Play |
miniOTP-1, C105 | Windows | burner.exe command line tool |
C301, C302 | Android | Google Play |
C301, C302 | Cross-platform (Python) | token2_config.py |
C301-i, C302-i | Android | Google Play |
C301-i, C302-i | Windows | Windows NFC Burner |
C301-i, C302-i | iPhone | iPhone app guide |
C301-i, C302-i | Cross-platform (Python) | token2_config.py |
miniOTP-2, miniOTP-3 | Android | Google Play |
miniOTP-2, miniOTP-3 | Windows | Windows NFC Burner |
OTPC-P1, OTPC-P2 | Android | Google Play |
OTPC-P1, OTPC-P2 | Windows | Windows NFC Burner |
miniOTP-2-i, miniOTP-3-i | Android | Google Play |
miniOTP-2-i, miniOTP-3-i | Windows | Windows NFC Burner |
miniOTP-2-i, miniOTP-3-i | iPhone | iPhone app guide |
OTPC-P1-i, OTPC-P2-i | Android | Google Play |
OTPC-P1-i, OTPC-P2-i | Windows | Windows NFC Burner |
OTPC-P1-i, OTPC-P2-i | iPhone | iPhone app guide |
miniOTP-2/3(i), OTPC-P1/P2(i) | Cross-platform (Python) | token2_config.py |
Molto-1 | Android | Android app guide |
Molto-1 | Windows | Windows app guide |
Molto-1-i | Android | Android app guide |
Molto-1-i | Windows | Windows app guide |
Molto-1-i | iPhone | iPhone app guide |
EVVIS-QR-1 | Windows | EVVIS-QR1 USB Config tool |
Molto-2 | Windows | Molto-2 USB Config tool |
Prerequisites
NFC Tokens
Android devices should be equipped with an NFC chip. iPhone apps are compatible with models newer than iPhone 7 and with iOS v13 or higher. Windows application will require an external USB NFC reader or a built-in NFC module (existing on some models of modern laptops). So far the application has only been tested under Windows 10 and Windows 8 64 bit. Python-based NFC Burner script (token2_config.py) requires the PN533-chip based NFC Writer device.
USB Tokens
No additional device, driver nor any other installation is needed. USB cable is supplied (USB-A to micro-USB port), any standard USB cable can be used (with data support). For computers without USB-A ports, USB-Type-C adapters can be used.
FIDO2 Key management using Chromium based web browsers
If you are using macOS or Linux, you can manage your FIDO2 keys using the tools integrated into the latest Chromium based browsers, such as Google Chrome (starting from v80).
TOKEN2 Companion app is a tool to leverage the use of TOKEN2 FIDO2 security keys (second-generation only, T2F2-ALU, and T2F2-NFC) beyond classic U2F and standard FIDO2/WebAuthn functionality. The app enables you to set and use TOTP profiles on a computer or on an Android device (NFC or USB/OTG) as well as iOS (with NFC only). The guides are available below:
This open-source toolset can be used to emulate a hardware token and as to perform OTP verification and drift detection. It can also be used to generate random seeds for programmable tokens and record generated data as CSV file for Azure MFA as described here.
The source code of Token2 TOTP Toolset is available under our GitHub repository. You can also use the hosted version.
This tool is created as a command-line emulator of Token2 hardware tokens. It can generate any combination of 6 or 8 digits OTP, with 30 or 60 seconds interval, with SHA1 or SHA256 secret keys. Click here for more information and download.
Once the tokens are delivered, customers should request the secret keys by filling the request form. The serial numbers of the tokens are required to be entered. For tokens where the serial numbers are presented in barcode or QR code format, you can use the apps to avoid entering the serial numbers manually:
TOKEN2 Serial number reader (Android)
Token2 QR Scanner (iOS)