Preparing Your Mobile Device for a SoftToken
Simply by using your phone’s mobile web browser to visit the AuthAnvil SoftToken Portal at https://customer.scorpionsoft.com/gettoken/, you can get access to the AuthAnvil SoftToken software for your device. By determining what type of device you are using, the portal will send you to the correct location to download the software for your device.
A few things to consider include:
- Apple iPhone or iPod Touch devices will need to download the software from the iTunes Store. It is a free download and you will not be charged in iTunes.
- Windows Phone 7 devices will need to download the software from the Zune Store. It is a free download and you will not be charged.
- Depending on the manufacturer and carrier, Android users may need to download the software from the Android Marketplace. It is a free download and you will not be charged.
- Older Blackberry and Windows Mobile devices may not, by default, trust the SSL certificate as the root certificate authorities are not up to date. If this concerns you, you may wish to update your phone before installing the AuthAnvil SoftToken.
- Blackberry devices must have their APN configured. Failing to do this will not allow activation over the Internet to occur. If you are unsure, please contact your Blackberry administrator.
- Depending on the configuration policy on your Blackberry device, you may be prompted several times during installation and activation, including when:
- You wish to download the software and the device doesn’t trust the certificate.
- When attempting an activation the software wishes to open a secure HTTPS channel to the activation server.
- When you activate the device, you are prompted that the software wishes to access information about the device. You do not require a data plan to download these files. You can use your Internet connected computer through your typical dock/cradle to access the portal to download and activate your device.
Mass deployment through Exchange or BES is not covered in this document. If you wish to deploy using that method, please contact a Microsoft or RIM mobile professional directly for assistance.
Note for BES Users: As of this writing, there is an issue with the way that Blackberries connected to BES 4.1 SP7 or later and BES Express 5.0 servers handle SSL certificates, causing them to be unable to communicate with the SoftToken Provisioning Server to activate their tokens. RIM has published a workaround for this under KB 20833:
“On the BlackBerry smartphone, select Options>Security Options>Advanced Security Options>TLS and change the TLS Default from Proxy to Handheld. This will allow the BlackBerry smartphone to parse the certificate directly, which does not have the problem with the Subject Alternative Name.”