Seitenhistorie

...

• Name / MAC address: Enter the user name for the VPN user.
• Password: Enter the password for the VPN user.
• Expiry type: From the drop-down menu, select the option Never so that the VPN user remains valid permanently.

3.6) Go to the menu RADIUS → Server → OTP user accounts.

...

• Username: From the drop-down menu, select the name of the user account created in step 3.5.

• Hash algorithm: From the drop-down menu, select the option SHA-256. If your authenticator app does not support the hash algorithm SHA256, you can use SHA1.

• Time step: This parameter is the interval after which a new OTP token is generated. Leave the setting at the default value of 30 seconds.  
• Network delay: This parameter specifies the number of time steps by which the clock of the end device with the authenticator app may deviate from the time of the router. The router then also checks the OTPs before and after. Leave this setting at the default value of 1 (i.e. OTPs are checked 30 seconds before and after). 
• Secret: Enter a 16-digit password. This should contain capital letters and numbers between 2 - 7 only (see RFC3548). The password is encoded in Base32 and shared with the authenticator. 
• Issuer: Enter a descriptive name for the issuer (in this example LANCOM-OTP).
• Number digits: Leave the setting at the default value of 6 characters. 

...