Login
    Contenu x
    AAL2GenPasswordICSF
    • 22 Jan 2025
    • 2 Minutes à lire
    • Sombre
      Lumière
    • PDF
    Contenu

    AAL2GenPasswordICSF

    • Mis à jour le 22 Jan 2025
    • 2 Minutes à lire
    • Sombre
      Lumière
    • PDF
    The content is currently unavailable in French. You are viewing the default English version.
    Résumé de l’article

    Function prototype

    aat_int32 AAL2GenPasswordICSF(
                           TDigipassBlob*    DPData,
                           TKernelParms*     CallParms,
                           aat_ascii*        aStorageKeyNameIn,
                           aat_ascii*        aInitialVectorIn,
                           aat_ascii*        Password,
                           aat_ascii*        Challenge,
                           aat_ascii*        ReturnHostCode,
                           aat_int32*         ReturnHostCodeLength);

    Description

    If Virtual Mobile Authenticator is supported and activated for the given authenticator application BLOB, AAL2GenPasswordICSF function can be used to generate a dynamic one-time password. It is an extension of AAL2GenPassword, with the additional feature of integrating the return host code.

    Parameters

      Table: Parameters (AAL2GenPasswordICSF)
    TypeNameUseDescription
    TDigipassBlob * DPDataI/Oauthenticator application BLOB. Upon return from the function call, this BLOB must be rewritten to the application database to reflect changes..
    TKernelParms *CallParmsIStructure of runtime parameters to use during this function call.
    aat_ascii *aStorageKeyNameInIString of up to 64+1 characters, left-justified, null-terminated, or right-padded with spaces. This is the label of the ICSF storage key used to encrypt the sensitive Digipass application BLOB data.
    aat_ascii *aInitialVectorInIString of 16 hexadecimal characters, left-justified, null-terminated, or right-padded with spaces. This is the initial vector used to encrypt the sensitive authenticator application BLOB data.
    aat_ascii *PasswordO

    String of up to 17 numeric or hexadecimal characters, left-justified, null-terminated, or right-padded with spaces. This is the dynamic password generated by the library (recommended buffer size is 18 bytes).

    aat_ascii *ChallengeIString of up to 17 numeric characters, left-justified, null-terminated, or right-padded with spaces. This parameter holds the challenge which may have been proposed to the user to generate CodeToVerify. If no challenge was generated, this parameter should be NULL.
    aat_ascii *ReturnHostCodeOUp to 17 numeric or hexadecimal characters, left-justified, null-terminated or right-padded with spaces. This is the code generated by Authentication Suite Server SDK.
    aat_int32 *ReturnHostCodeLengthOPointer to a long integer that indicates the length of the generated return host code.

    COBOL calling convention

    Entry point: AA2VGPIC
02   W-BLOB             PIC X(248).
02   W-KERNELPARMS.
     03   W-PARMCOUNT   PIC 9(8) USAGE BINARY.
     03   W-PARM01      PIC 9(8) USAGE BINARY.
     . . .
     03   W-PARM19      PIC 9(8) USAGE BINARY.
02   W-HOSTCODE         PIC X(17).
02   W-HOSTCODE-LENGTH  PIC 9(8) USAGE BINARY.
02   W-RETURN           PIC S9(8) USAGE BINARY.
02   W-PASSWORD         PIC X(17).
02   W-CHALLENGE        PIC X(17).
02   W-STORAGEKEY       PIC X(65).
02   W-INITVECTOR       PIC X(17).
02   W-API-NAME         PIC X(8) VALUE 'AA2VGPIC'.
. . .
     CALL W-API-NAME USING
           BY REFERENCE W-BLOB
           BY REFERENCE W-KERNELPARMS
           BY REFERENCE W-STORAGEKEY
           BY REFERENCE W-INITVECTOR
           BY REFERENCE W-PASSWORD
           BY REFERENCE W-CHALLENGE
           BY REFERENCE W-HOSTCODE
           BY REFERENCE W-HOSTCODE-LENGTH
           RETURNING W-RETURN

    Return codes

      Table: Return codes (AAL2GenPasswordICSF)
    CodeMeaningCodeMeaning
    0Success908HSM key not found
    130Invalid response pointer951Invalid HSM key type for HSM decryption
    131Missing required challenge1103Unlock Version 2 not supported
    132Unsupported token type1116Response check digit not allowed
    202Identification error threshold reached1117Challenge check digit not allowed
    208Application disabled1118Unsupported BLOB
    209Grace period expired-101Challenge too short
    210Allowed use count reached-102Challenge too long
    211Virtual Virtual token not supported-103Challenge check digit wrong
    412Invalid checksum-105Challenge minimum length not allowed
    413Invalid Base64 format-106Challenge maximum length not allowed
    414Invalid checksum (HSM)-107Challenge number wrong
    510Invalid Digipass data pointer-108Challenge character invalid
    900Invalid session context handle-1501Memory allocation failed
    Cet article vous a-t-il été utile ?
    What's Next
    Change password!
    Changing your password will log you out immediately. Use the new password to log back in.
    Change profile
    Success!
    First name must have atleast 2 characters. Numbers and special characters are not allowed.
    Last name must have atleast 1 characters. Numbers and special characters are not allowed.
    Enter a valid email
    Enter a valid password
    Your profile has been successfully updated.
    Logout
    ESC

    Ozzy, facilitant la découverte de connaissances grâce à l’intelligence conversationnelle