Push OTP on Chrome OS
Support for the push OTP feature depends on the configuration of your SafeNet MobilePASS+ token.
Push OTP simplifies the process of accessing a protected resource, such as a web page, cloud or VPN. A push notification is sent from the login page to your Chromebook, where a pending notification bar displays on the SafeNet MobilePASS+ app.
After you have approved the login request and entered a PIN (if required according to your tokens’ settings), a passcode is generated by your SafeNet MobilePASS+ app and sent to the login page, logging you in automatically. This eliminates the need to generate a one-time passcode (OTP) on your Chromebook or to enter it into the login page.
You may be required to enter a PIN after approving the push notification.
Log in with push OTP
The following procedure uses Microsoft 365 as an example of a resource that you want to access. The login steps may vary for other resources.
-
Open the login page of the resource, enter your credentials, and then select Next.
You are redirected to your organization’s login page.
-
Enter your login credentials and then select Sign in.
-
Select Use my mobile to autosend a password and then select Submit.
The system sends a notification of the login request to your Chromebook.
The Enhanced Approval Workflow is not available for PIN-protected tokens, or where non PIN-protected tokens are not configured to support it.
-
When the login request arrives on your Chromebook, you can respond from the SafeNet MobilePASS+ app:
-
Approving a push OTP login request with standard approval workflow:
-
Select the pending notification bar.
If there are multiple login requests pending, selecting the pending notification bar will prompt the user to approve or deny the most recent notification. Earlier notifications will remain in the bar.
-
Select Approve.
-
To collapse a push notification, drag the icon to the bottom of the screen.
-
-
Approving a push OTP login request with enhanced approval workflow:
The enhanced approval workflow is available only if your token is not PIN-protected and is configured to support this feature.
- In the Login request from window, select Approve.
If you receive an unexpected request, select Deny, and then select ‘It wasn’t me!’ This sends a notification of the unauthorized login attempt to your organization’s authentication management system.
SafeNet MobilePASS+ sends a passcode to the login page.
You are now logged in to the resource that you want to access.
-