Using your CRYPTOCard KT token for the first time

You will be issued a token along with an inital PIN. You will have to change your PIN at first login.

Guide for Windows Administrators

Please follow the steps below.

• Use an RDP client to connect to the designated server.
• The login window should display the CryptoCard logo.
• Enter your userid at the "User Name" prompt.
• Make sure the domain is set properly.
• Push the button on the token
• At the password prompt, type your initial PIN followed by the digits displayed on the token.
• You will be prompted for a new PIN. Enter a PIN between 3 and 7 characters in length. Characters can be any combination of upper/lower case letters and digits.

Guide for Unix/Linux Administrators

Please follow the steps below from a workstation safe from shoulder surfing.

• If you are not familar with the sudo command, you should read its documentation (man sudo)
• Login to your account on a host where you have been given sudo privileges.
• Type sudo -l.
• Push the button on the token.
• At the password prompt, type your initial PIN followed by the digits displayed on the token.
• You will be prompted for a new PIN. Enter a PIN between 3 and 7 characters in length. Characters can be any combination of upper/lower case letters and digits. _Beware that the PIN is echoed back to you!_
• Once authenticated with sudo, you can run commands as root by prefixing them with sudo. If you want su/[s]suw like functionality, use sudo -s.
• If you are paranoid, be sure to run sudo -k (as yourself) when you are done with tasks that require root.

In later sessions, simply prefix your command with sudo. When prompted for a password, type in your PIN followed by the characters displayed on the token (after pushing the button). The token with shut-off automatically after 30 seconds.

-- JasonTestart - 27 Oct 2006