Overview:
Strong Authentication at Your Fingertips
OATH compliant Time-based One-Time Password (TOTP) tokens lets you solve Network
Authentication Security problems affordably by adding a Second Factor for Strong
Authentication. Relying solely on static passwords for remote access to your VPN and web
sites provides only weak authentication, because your users’ passwords are vulnerable to
theft or guessing, as well as dictionary and brute-force attacks. To solve these problems you
can deploy FortiToken.
Leverage Existing Fortinet Platforms
Besides offering out-of-the-box interoperability with any time-based OATH compliant
authentication server, such as the FortiAuthenticator from Fortinet, the FortiToken can
also be used directly with the FortiGate® consolidated security platform, including High
Availability configurations. FortiGate has an integrated authentication server for validating the
FortiToken as the second authentication factor for SSL VPN, IPSec VPN, Captive Portal and
Administrative login, thereby eliminating the need for the external RADIUS server ordinarily
required when implementing two-factor solutions.
Online Activation with FortiGuard®
You can activate your FortiToken tokens online directly from FortiGate or FortiAuthenticator
using the FortiGuard® Center, which maintains your token seeds in a managed service
repository. Once the seeds are activated, they can no longer be accessed from FortiGuard,
ensuring that your seeds are safe from compromise. Alternatively, Fortinet also offers an
encrypted activation CD solution.
Highlights
FortiToken Advantages
- Reduces costs and complexity
by using your existing FortiGate
as the two-factor authentication
server
- Perpetual token license eliminates
annual subscription fees
- Scalable solution offers low entry
cost and TCO
- Zero footprint solution
Main Features
- Integrated with FortiClient™ and
protected by FortiGuard
- OATH TOTP compliant
- Large, easy-to-read, LCD display
- Long-life Lithium battery
- Tamper-resistant/tamper-evident
packaging
Supported Platforms
- FortiOS 4.3 and up
- FortiAuthenticator — all versions
Highlights:
FortiToken 200/200CD
The OATH compliant, time-based One-Time Password (OTP)
FortiToken 200 is part of Fortinet’s broad and flexible two-factor
authentication offering; it is a small, keychain-sized device that
offers real mobility and flexibility for the end-user. There is no client
software to install; simply press the button and the FortiToken 200
generates and displays a secure one-time password every 60
seconds to verify user identity for access to critical networks and
applications. The big LCD screen of the rugged FortiToken 200
is much easier to read than other OTP tokens and there is an
indicator on the screen displaying the time left until the next
OTP generation.
FortiToken 200CD tokens are shipped with an encrypted activation
CD for the ultimate in OTP token seed security.FortiToken 200/200CD
The OATH compliant, time-based One-Time Password (OTP)
FortiToken 200 is part of Fortinet’s broad and flexible two-factor
authentication offering; it is a small, keychain-sized device that
offers real mobility and flexibility for the end-user. There is no client
software to install; simply press the button and the FortiToken 200
generates and displays a secure one-time password every 60
seconds to verify user identity for access to critical networks and
applications. The big LCD screen of the rugged FortiToken 200
is much easier to read than other OTP tokens and there is an
indicator on the screen displaying the time left until the next
OTP generation.
FortiToken 200CD tokens are shipped with an encrypted activation
CD for the ultimate in OTP token seed security.
FortiToken 220
The FortiToken 220 OTP token is a mini credit card form factor
token. The card can be shipped with a precut hole for key ring
application. Its sleek and slim design fits neatly into your wallet.
Specifications:
| |
FORTITOKEN 200 / 200CD |
|
FORTITOKEN 220 |
| Onboard Security Algorithm |
|
OATH-TOTP (RFC6238) |
|
| OTP Spec |
|
60 seconds, SHA-1 |
|
| Component |
6-digit high contrast LCD display |
|
Built-in button, 6-character LCD screen, Globally unique serial number |
| Dimensions (Length x Width x Height) |
61.5 x 27.5 x 11.5mm |
|
68 x 38 x 1 mm |
| Hardware Certification |
RoHS Compliant |
|
RoHS, CE, FCC (certificates pending) |
| Operating Temperature |
14–122°F (-10–50°C) |
|
32–122°F (0–50°C) |
| Storage Temperature |
-4–158°F (-20–70°C) |
|
14–140°F (-10–60°C) |
| Water-Resistant |
|
IP54 (Ingress Protection) |
|
| Casing |
|
Hard Molded Plastic (ABS) Tamper-Evident |
|
| Secure Storage Medium |
|
Static RAM |
|
| Battery Type |
|
Standard Lithium Battery |
|
| Battery Lifetime |
|
3–5 Years |
|
| Customization Available* |
|
Casing Color, Company Logo, Faceplate Branding |
|
*Customizations are quantity-based
PLATFORM SCALABILITY
FortiToken scalability for specific platforms can be found in the Fortinet Product Matrix located at http://www.fortinet.com/sites/default/files/productdatasheets/Fortinet_Product_Matrix.pdf
Documentation:
Download the Fortinet FortiToken Datasheet (PDF).
