Token Feitian C200 TOTP

Token C200 TOTP - time-based authentication.

The C200 OATH-TOTP Hardware Token is specifically engineered to generate secure, time-based one-time passwords (TOTP), significantly enhancing two-factor authentication (2FA) security. In compliance with RFC 6238 standards, it generates a unique 6-digit code every 30 or 60 seconds using the cryptographically robust SHA-1 or SHA-256 hash algorithms. The token's internal timing mechanism is highly precise, minimizing time drift and ensuring reliable operation over its entire lifespan, supported by a durable battery designed to last between 5 to 6 years. Additionally, the C200 token has achieved certification to the FIPS-140-2 Level 1 security standard.

For synchronization with authentication servers, the token relies on a secret key known as a "seed." The C200 supports seed generation in either Base32 or Hexadecimal (Hex) formats, with Base32 as the default choice due to its broad compatibility across most authentication servers. Users who require the Hex format must explicitly specify this preference. The token’s serial number is essential for generating the appropriate seed.

Supported authentication mechanisms and servers for the C200:

• Microsoft Entra ID (Azure AD) with a P1 or P2 subscription
• MFA for Citrix Netscaler using TOTPRadius
• VMware Horizon with TOTPRadius
• WordPress
• Sophos SG Firewall
• CyberArk Idaptive
• WatchGuard AuthPoint
• Okta
• MFA for SSH access to Cisco Catalyst switches using TOTPRadius
• VPN with Cisco ASA using TOTPRadius
• MFA-protected SSH access to Ubuntu servers with LDAP or Microsoft Entra ID credentials using hardware or software tokens
• Two-factor authentication with Palo Alto NGFW
• Entrust Identity Guard
• Symantec VIP
• SafeNet Authentication Service
• LinOTP
• MicroFocus (NetIQ)
• RCDevs
• SwivelSecure