FortiToken Mobile is an OATH-compliant, event-based and time-based One Time Password (OTP) generator application designed for mobile devices. It serves as the client component of Fortinet’s robust, user-friendly, and cost-effective solution for MultiFactor Authentication (MFA). To validate the OTPs, you need to use FortiOS, FortiAuthenticator, or FortiToken Cloud as the OTP validation server or service.
Privacy and Control:
FortiToken Mobile respects your privacy by not altering your phone's settings, capturing images or videos, recording or transmitting audio, or accessing your emails. It does not monitor your browsing history and requires your explicit permission to send notifications or change settings. Additionally, FortiToken Mobile cannot perform a remote wipe of your device. The app only checks your OS version to ensure compatibility with the app version. During manual installations of FortiToken tokens, 3rd Party tokens, and Token Transfer, you might enter sensitive information like your email address or token seeds.
While FortiToken Mobile does not change any settings without your consent, it requires the following permissions for its operations:
- Camera access to scan QR codes for straightforward token activation.
- TouchID/FaceID for enhanced app security.
- Internet access to activate tokens and receive push notifications.
- The "Send Feedback by Email" feature, which automatically populates the "Sender" field.
- The ability to share files internally between applications to attach files to emails for feedback.
- The capability to keep your phone awake during internal database upgrades to prevent data corruption.
By downloading and installing FortiToken Mobile, you agree to all the terms mentioned above.
Supported Operating Systems: Android 5.0 through Android 11.
