Mobile tokens such as iToken and Blackberry do not work. When testing the token on the user's account the message, "Failed to Verify Response" is received.
The tokens have been reprogrammed and reinstalled on the mobile devices. They work for a short while then fail again.
How can this be prevented?
Delete the token in Active Directory and program a new one using the OATH Compliant HMAC/SHA1 option.
If the mobile device is in a location remote from the Defender Security Server (DSS) the time difference may create issues. Using the OATH option eliminates the time factor.