Thoughts that's escape, only details.

eToken PASS in open environment

I bought promo pack of 5 Aladdin eToken PASS units, the tokens comes with serial number in this format: XXXX-XXXX-XXXX-XXXX activated for free on the website of the manufacturer only one time of course, then used token purchased from ebay usually are unusable.

The activation consists in a zip containing two ldif format dat files, you can extract the token key parsing the text from “importAlpine.dat” file:

sccAuthenticatorId: (means token serial number) sccKey= (means token key)

eToken PASS are event based tokens, I’ve tested successfully using otptool, part of mod-authn-otp.