FortiToken Mobile

FortiToken Mobile is an OATH-compliant, event-based and time-based One-Time Password (OTP) generator application designed for mobile devices. It serves as the client component of Fortinet's robust, user-friendly, and cost-effective solution for enhancing your Multi-Factor Authentication (MFA) security. To validate OTPs, you must use FortiOS, FortiAuthenticator, or FortiToken Cloud as the OTP validation server or service.

Privacy and Control:

FortiToken Mobile respects your privacy and device control. It cannot alter settings on your phone, capture photos or videos, record or transmit audio, nor can it access your emails. Additionally, it does not view your browsing history, and it needs your explicit permission to send notifications or adjust any settings. FortiToken Mobile also cannot perform a remote wipe of your device. The app only checks your OS version to ensure compatibility with the app version. During manual installation of FortiToken tokens, 3rd Party tokens, and Token Transfer, you may need to enter sensitive information like your email address or token seeds.

While FortiToken Mobile cannot modify settings without your consent, it requires certain permissions to function effectively:

• Camera Access: To scan QR codes for seamless token activation.
• TouchID/FaceID: For enhancing app security.
• Internet Access: For token activation and receiving push notifications.
• Email Feedback: To automatically fill the "Sender" field when sending feedback.
• File Sharing: To prepare attachments for emails when using the "Send Feedback by Email" feature.
• Keep Phone Awake: To prevent data corruption during internal database upgrades.

By downloading and installing FortiToken Mobile, you consent to the terms outlined above.

OS Supported: Android 5.0 through Android 11.