SafeNet MobilePASS+ for watchOS

The SafeNet MobilePASS+ app turns your watchOS device into a two-factor authentication device, removing the need to carry an additional hardware token.

After a token is activated on the SafeNet MobilePASS+ iOS app on your iPhone:

• If it is PIN-protected, enable watch biometrics to display the token in the SafeNet MobilePASS+ watchOS app.

• If it is not PIN-protected, it displays in the SafeNet MobilePASS+ watchOS app automatically.

User PIN with biometrics disabled on server, server PIN, and OCRA tokens are not supported on Apple Watch and will not display.

Supported platforms

SafeNet MobilePASS+ for watchOS runs on watchOS version 7 or later.

Install $SafeNet MobilePASS+ for watchOS

1. Pair your Apple Watch to your iPhone.

2. Download and install SafeNet MobilePASS+ from the Apple App Store onto your iPhone.

   • If Automatic App Install is enabled on your paired Apple Watch, the watchOS version of the app will be installed automatically.

   • If Automatic App Install is not enabled on your paired Apple Watch, manually install the watchOS app by going into the Apple Watch app on iOS.

   

After it's installed, the SafeNet MobilePASS+ app icon displays on the Apple Watch:

Enable watch biometrics

1. Open the SafeNet MobilePASS+ iOS app on your iPhone.

2. Select Settings on the token.

3. Slide the Enable Watch Biometrics button to the right to activate watch biometrics.

   

   Your token displays in the SafeNet MobilePASS+ watchOS app.

Generate a passcode with time-based tokens

On a time-based token, a new passcode is automatically generated after a specified interval, making the previous passcode invalid.

1. Open the SafeNet MobilePASS+ watchOS app.

2. Swipe horizontally to navigate to the required token.

   The passcode automatically displays.

   

Generate a passcode with event-based tokens

1. Open the SafeNet MobilePASS+ watchOS app.

2. Swipe horizontally to navigate to the required token.

   The passcode displays automatically on the first token.

   

   Alternately, tap on another token to unlock it and display the passcode.

   

Approve login requests on Apple Watch

To approve a login request on Apple Watch:

• Select Approve (scroll down if necessary).

  

  Push request approvals that require you to enter a server PIN are not supported on the Apple Watch. In this case, you are prompted to continue the approval on your iPhone.

To approve a login request on the SafeNet MobilePASS+ app on your iPhone:

• Review the information in the login request and then select Approve.

  The request includes information about the application, including the token name, the location of the request, and the time elapsed since receiving the request.

  

Approve login requests with number matching on Apple Watch

For additional security, your administrator can configure the push login request to use number matching instead of the Approve and Deny buttons. With number matching, the login screen displays a number, and you tap the matching number on the push notification.

To approve a login request with number matching on your Apple Watch:

• On your Apple Watch, tap the number that matches the number on the login page (scroll down if necessary).

  

  

To approve a login request with number matching on your iPhone:

• Review the information in the login request, and then tap the number that matches the number on the login page.

  The request includes information about the application, including the token name, the location of the request, and the time elapsed since receiving the request.

  

  

Share enrollment logs

1. Long-press the authenticator list screen of SafeNet MobilePASS+ on the Apple Watch until you see the image to share the watch log to your iPhone.

2. Select Share Enrollment Logs on the iPhone to share the logs for help and support.