Forum Discussion
Oath hardware token
Hi All,
I just received my hardware tokens to set up for a few users in our organization that do not have access to company mobile devices. I have uploaded the .csv files with the required information in our Azure portal and it successfully uploaded. I am not able to activate the token, it keeps failing but I’m not sure why and I don’t really get a reason.
Is there a clearer way to set this up or do I need to enable something before I set this up. I would like this set up before the end of the week, any help is appreciated.
Thanks,
I just received my hardware tokens to set up for a few users in our organization that do not have access to company mobile devices. I have uploaded the .csv files with the required information in our Azure portal and it successfully uploaded. I am not able to activate the token, it keeps failing but I’m not sure why and I don’t really get a reason.
Is there a clearer way to set this up or do I need to enable something before I set this up. I would like this set up before the end of the week, any help is appreciated.
Thanks,
9 Replies
- There are several possible causes, but the most important thing to have correct is the contents of the CSV file that you uploaded. Some time ago I noticed the official Microsoft guide's example included seed data that was hex encoded (for microsoft the data should only be base32 enocded) on one page the example was partially corrected, but I see elsewhere they have an example that is still hex encoded. I would first check that your seed data is Base32 encoded, and that you have a time window that matches the tokens you are uploading (either 30 or 60 seconds).
If you used a programmable token (such as the safeid diamond token), then you may will have selected the time window time yourself when burning the token (so again ensure the time window and seed data match).
I also strongly suggest using a text editor when editing the seed file, and do not use a spreadsheet (as this can corrupt some numeric data in the file).- Hi Jeff.
I have a similar issue but I am able to upload the file without any error. Then when I try to activate the token, it just says the below error
Failed to activate the selected OATH token. I tried it for multiple token but it is not working..
I however was able to activate one token but thereafter I am not able to activate any. The token is from Feitian.- It could be that you didn't include the UPN details in the CSV file, but a real possibility is that the file was not edited with a text editor. By default the CSV files will load into a spreadsheet but you should avoid this happening as it is likely to corrupt the file prior to upload (the number format for the serial numbers for example).
May refer this on steps on detail:
https://m365security.net/2022/02/10/how-to-implement-oath-totp-hardware-tokens-to-azure-ad/
The file format for (CSV) you upload must include the UPN, serial number, secret key, time interval, manufacturer, and model as the example below shows.
upn,serial number,secret key,time interval,manufacturer,model
Helga@contoso.com,1234567,1234567890abcdef1234567890abcdef,60,Contoso,HardwareKeyAs you mentioned, after a successful upload of the .csv file you could not see any failure?
Then you just need to activate the hardware token by clicking Activate
You will be prompted for a verification code that you get from the hardware token
After activation your tokens you can see the activation status in the portal
Have you tried above steps?
What make is your token?
Any error message on the portal?
Thank you
Dav,
Same problem here,
The format i use looks right, and file uploads without error. But when i check the status, it failed!
Only message i receive: ''Something went wrong, try again later''.
