New Static Password Synchronization

For a synchronization of the static password, the following form fields must be used on the New Static Password Synchronization page and posted to the User Self-Management Website servlet (action="passwordsync"):

New Static Password Synchronization form fields
Form field name Visible label Description
username User Name

Required. The user name for logging on to User Self-Management Website. The maximum length is 255 characters.
password New Password

Required. The new static password and/or a keyword. The maximum length is 128 characters.
response Digipass Response Required. The authenticator response. The maximum length is 16 digits.
commit Update Password Required. The button to submit data entered by the user to OneSpan Authentication Server.
replay_token <hidden> Required. Internally used form field to prevent re-transmission of form data.
New Static Password Synchronization form fields (Challenge page)
Form field name Visible label Description
username User Name

Required. The user name for logging on to User Self-Management Website. The maximum length is 255 characters.
password New Password

Required. The new static password and/or a keyword. The maximum length is 128 characters.
response Digipass Response Required. The authenticator response. The maximum length is 16 digits.
challengekey <hidden> Required. Internally used form field to facilitate Challenge/Response authentication.
commit Update Password Required. The button to submit data entered by the user to OneSpan Authentication Server.
replay_token <hidden> Required. Internally used form field to prevent re-transmission of form data.

New static password synchronization process (Response-Only authenticators)

  1. The user navigates to the New Static Password Synchronization page.
  2. The user enters their user name.
  3. The user enters the new static password.
  4. The user generates a one-time password with their authenticator.
  5. The user enters the one-time password in the Digipass Response field.
  6. The user clicks Update Password.

New static password synchronization process (authenticators using Challenge/Response authentication)

  1. The user navigates to the New Static Password Synchronization page.
  2. The user enters their user name.

  3. The user does one of the following:

    • Enter the new static password and the keyword.
    • Enter the keyword.
  4. The user clicks Update Password.
  5. The user enters the challenge displayed on-screen into their authenticator.

  6. If required, the user enters the new static password in the New Password field.

    This applies if in step 3, the user has entered only the keyword .

  7. The user enters the response from their authenticator in the Digipass Response field.
  8. The user clicks Update Password.

New static password synchronization process (Virtual Mobile Authenticator)

  1. The user navigates to the New Static Password Synchronization page.
  2. The user enters their user name.

  3. The user does one of the following:

    • Enter the new static password and the keyword.
    • Enter the keyword.
  4. The user clicks Update Password.

  5. If required, the user enters the new static password.

    This applies if in step 3, the user has entered only the keyword.

  6. The user enters the one-time password sent to them via text message or email in the Digipass Response field.
  7. The user clicks Update Password.