Strong Authentication at Your Fingertips
OATH compliant Time-based One-Time Password (TOTP) tokens lets you solve Network Authentication Security problems affordably by adding a Second Factor for Strong Authentication. Relying solely on static passwords for remote access to your VPN and web sites provides only weak authentication, because your users’ passwords are vulnerable to theft or guessing, as well as dictionary and brute-force attacks. To solve these problems you can deploy FortiToken.
Leverage Existing Fortinet Platforms
Besides offering out-of-the-box interoperability with any time-based OATH compliant authentication server, such as the FortiAuthenticator from Fortinet, the FortiToken can also be used directly with the FortiGate® consolidated security platform, including High Availability configurations. FortiGate has an integrated authentication server for validating the FortiToken as the second authentication factor for SSL VPN, IPSec VPN, Captive Portal and Administrative login, thereby eliminating the need for the external RADIUS server ordinarily required when implementing two-factor solutions.
Online Activation with FortiGuard®
You can activate your FortiToken tokens online directly from FortiGate or FortiAuthenticator using the FortiGuard® Center, which maintains your token seeds in a managed service repository. Once the seeds are activated, they can no longer be accessed from FortiGuard, ensuring that your seeds are safe from compromise. Alternatively, Fortinet also offers an encrypted activation CD solution.
Highlights
FortiToken Advantages
- Reduces costs and complexity by using your existing FortiGate as the two-factor authentication server
- Perpetual token license eliminates annual subscription fees
- Scalable solution offers low entry cost and TCO
- Zero footprint solution
Main Features
- Integrated with FortiClient™ and protected by FortiGuard
- OATH TOTP compliant
- Large, easy-to-read, LCD display
- Long-life Lithium battery
- Tamper-resistant/tamper-evident packaging
Supported Platforms
- FortiOS 4.3 and up
- FortiAuthenticator — all versions
FortiToken 200/200CD
The OATH compliant, time-based One-Time Password (OTP) FortiToken 200 is part of Fortinet’s broad and flexible two-factor authentication offering; it is a small, keychain-sized device that offers real mobility and flexibility for the end-user. There is no client software to install; simply press the button and the FortiToken 200 generates and displays a secure one-time password every 60 seconds to verify user identity for access to critical networks and applications. The big LCD screen of the rugged FortiToken 200 is much easier to read than other OTP tokens and there is an indicator on the screen displaying the time left until the next OTP generation. FortiToken 200CD tokens are shipped with an encrypted activation CD for the ultimate in OTP token seed security.FortiToken 200/200CD The OATH compliant, time-based One-Time Password (OTP) FortiToken 200 is part of Fortinet’s broad and flexible two-factor authentication offering; it is a small, keychain-sized device that offers real mobility and flexibility for the end-user. There is no client software to install; simply press the button and the FortiToken 200 generates and displays a secure one-time password every 60 seconds to verify user identity for access to critical networks and applications. The big LCD screen of the rugged FortiToken 200 is much easier to read than other OTP tokens and there is an indicator on the screen displaying the time left until the next OTP generation.
FortiToken 200CD tokens are shipped with an encrypted activation CD for the ultimate in OTP token seed security.
FortiToken 220
The FortiToken 220 OTP token is a mini credit card form factor token. The card can be shipped with a precut hole for key ring application. Its sleek and slim design fits neatly into your wallet.
FORTITOKEN 200 / 200CD |
|
FORTITOKEN 220 |
Onboard Security Algorithm |
|
OATH-TOTP (RFC6238) |
|
OTP Spec |
|
60 seconds, SHA-1 |
|
Component |
6-digit high contrast LCD display |
|
Built-in button, 6-character LCD screen, Globally unique serial number |
Dimensions (Length x Width x Height) |
61.5 x 27.5 x 11.5mm |
|
68 x 38 x 1 mm |
Hardware Certification |
RoHS Compliant |
|
RoHS, CE, FCC (certificates pending) |
Operating Temperature |
14–122°F (-10–50°C) |
|
32–122°F (0–50°C) |
Storage Temperature |
-4–158°F (-20–70°C) |
|
14–140°F (-10–60°C) |
Water-Resistant |
|
IP54 (Ingress Protection) |
|
Casing |
|
Hard Molded Plastic (ABS) Tamper-Evident |
|
Secure Storage Medium |
|
Static RAM |
|
Battery Type |
|
Standard Lithium Battery |
|
Battery Lifetime |
|
3–5 Years |
|
Customization Available* |
|
Casing Color, Company Logo, Faceplate Branding |
|
*Customizations are quantity-based
PLATFORM SCALABILITY
FortiToken scalability for specific platforms can be found in the Fortinet Product Matrix located at http://www.fortinet.com/sites/default/files/productdatasheets/Fortinet_Product_Matrix.pdf