Activate an authenticator instance

The second step to activate a device with an authenticator in multi-device licensing mode is to activate the authenticator instance. This step consists in providing Activation Message 2 generated by Authentication Server Framework to Mobile Authenticator Studio.. This message contains the following information used by Mobile Authenticator Studio:

• license serial number of the authenticator

• instance sequence number of the authenticator

• secret key of the authenticator

As a result of the authenticator instance activation, Mobile Authenticator Studio generates a MAC signature with the instance key of the authenticator. The MAC signature must be provided to Authentication Server Framework for the server-side to confirm the correct activation of the authenticator instance.

If the activation process is interrupted before the instance of the authenticator is activated (after the scan of Activation Message 2 or after the PIN validation), the information on the license is not stored. The dynamic vector associated with the license is destroyed.

Optionally, and depending on the parameter settings of the authenticator, the instance activation process may also require an authenticator password. The password is chosen by the user and protects against unauthorized use of the device with the authenticator. The password is set during theinstance activation process but may be changed in the course of the authenticator's life cycle. For more information, see Password protection.

In the multi-device licensing mode, an instance of the authenticator cannot be reactivated. Authentication Server Framework only generates Activation Message 2 once. If an authenticator license cannot be used anymore, it must be replaced by a new one. The number of instances for each authenticator serial number is limited to 99.

To confirm the authenticator activation to the server in the post-activation process, a Secure Channel app must be mandatorily defined in the Mobile Authenticator Studio Parameter Sheet.