Hi everyone,
we are using privacyIDEA to enroll TOTP Soft-Tokens for the user’s smartphones and are wondering whether we need to support something like a “Next-Token-Mode” in our environment.
-
Can a TOTP-Token only get out of sync when the clocks of either the server or the smartphone are wrong or is there another situation when this can occur?
-
Does the REST-API (/validate/check) respond with an out-of-sync-message when privacyIDEA realizes that the token has to be resynced?
Thanks a lot and best wishes
Michael