A one-time password can be generated either on the request of a user (while they are logging in to a Windows Client computer) or without a request, by an Ekran System user who has been added as a trusted user (i.e. Approver) who can manage one-time password requests for the Windows Client computer concerned.
NOTE: This feature is only available with an activated serial key for the Enterprise Edition of Ekran System.
Table of Contents
To view the list of trusted users (i.e. Approvers) who can manage one-time password requests for a Client computer (or for all the Client computers in a Client group), open the Client Management page, and find the required Client, and then click on its name in the Client Name column (or select the Client Groups tab, and find the required Client group, and then click on its name in the Client Group Name column.
Then, on the Editing Client (or Editing Client Group) page that opens, select the Authentication Options tab, and scroll down to the Two-Factor and Secondary Authentication section, where the corresponding trusted users (i.e. Approvers) selected are displayed under the Allow the use of one-time passwords checkbox, in the Users Who Can Approve Access drop-down list.
NOTE: The "Allow the use of one-time passwords" option cannot be enabled at the same time as "Enable secondary user authentication on login" option.