How to properly use the custom duration for Offline Temporary Passwords

In addition to the predefined time intervals, starting with Endpoint Protector 5.1.0.0, the Offline Temporary Password Duration also offers a customizable option. This allows generating time-based OTP Codes, with a Start Date/Time and an End Date/Time.

For large companies or multinational that have the Endpoint Protector Server and the protected endpoints on different time zones, taking into consideration how the Server Time and Client Time work is essential.

Example:

The Endpoint Protector Server is located in Germany, making the Server Time UTC+01:00. The protected endpoints are located in Romania, making the Client Time UTC+02:00.

When generating an OTP Code that should take effect tomorrow, from 16:00 on the endpoint time, it should actually be generated for tomorrow, from 15:00 (to adjust for the 1h difference in the time zone).

For the predefined durations, the above adjustment is not necessary. The OTP Code will be valid for that specific amount of time, starting with the moment it was redeemed. The only thing to consider is that the OTP Code needs to be redeemed the same day it was generated.