/ OTP Authorization

What is OTP Authorization?

One-time password (OTP) systems provide a mechanism for logging on to a network or service using a unique password that can only be used once. The OTP feature prevents certain forms of identity theft by making sure that any captured user name/password pair cannot be used a second time. Typically, the user's login name stays the same, however, and it is the password that is changed with each login.
In order to increase the security and protection of TOS, the new TOS 5 includes OTP login authentication features. OTP login authentication is mainly used for secondary authentication of HTTP/HTTPS access, thus improving the security of system access, especially during remote access.
System administrators and ordinary users can both activate OTP authentication. To activate OTP authentication, at least one mobile device must be bound to the TOS system, and the TerraMaster mobile application specially designed for TOS 5, TNAS mobile, must be installed.
Users can choose to bind multiple mobile devices to the TOS system, all of which will be recorded. When the user logs in, the system thus compares and verifies the OTP password generated by the mobile device with the device information, and only where verification succeeds is login allowed.
As users activate OTP authorization, they must set up a secure email address, so that if the mobile device fails or is lost, a login verification code can still be sent securely.