Function prototype
aat_int32 AAL2ResetStaticPassword (
TDigipassBlob* DPData,
TKernelParms* CallParms);
Description
This function is used with a Digipass authenticator that can use static passwords (e.g. Digipass GO 1). A call to AAL2ResetStaticPassword indicates that the user can define a static password at the next authentication request. For security reasons, only an administrator should have the right to use this function.
To activate this option, the Password Change Allowed functionality needs to be activated first.
The dynamic password generated by the Digipass authenticator is 89574526 (dynamic password without the static PIN). The static password is 1234.
Once AAL2ResetStaticPassword has been used by the administrator, the next authentication request will succeed only if the user enters one of the following:
- Authentication request in combination with static PIN usage – 123489574526 (possible if the user has not lost the static PIN), or
- Authentication request without the old static PIN but in combination with a request for a PIN change – 8957452643214321 (the user has lost the static PIN but is allowed to define a new static PIN). The dynamic password is entered and both the new PIN and the new PIN confirmation are entered afterwards.