The Infisical TOTP dynamic secret allows you to generate time-based one-time passwords on demand.

Prerequisite

  • Infisical requires either an OTP url or a secret key from a TOTP provider.

Set up Dynamic Secrets with TOTP

1

Open Secret Overview Dashboard

Open the Secret Overview dashboard and select the environment in which you would like to add a dynamic secret.
2

Click on the 'Add Dynamic Secret' button

Add Dynamic Secret Button
3

Select TOTP

Dynamic Secret Modal
4

Provide the inputs for dynamic secret parameters

Secret Name
string
required
Name by which you want the secret to be referenced
Configuration Type
string
required
There are two supported configuration types - url and manual.When url is selected, you can configure the TOTP generator using the OTP URL.When manual is selected, you can configure the TOTP generator using the secret key along with other configurations like period, number of digits, and algorithm.
URL
string
OTP URL in otpauth:// format used to generate TOTP codes.
Secret Key
string
Base32 encoded secret used to generate TOTP codes.
Period
number
Time interval in seconds between generating new TOTP codes.
Digits
number
Number of digits to generate in each TOTP code.
Algorithm
string
Hash algorithm to use when generating TOTP codes. The supported algorithms are sha1, sha256, and sha512.
Dynamic Secret Setup Modal Dynamic Secret Setup Modal
5

Click 'Submit'

After submitting the form, you will see a dynamic secret created in the dashboard.
6

Generate dynamic secrets

Once you’ve successfully configured the dynamic secret, you’re ready to generate on-demand TOTPs. To do this, simply click on the ‘Generate’ button which appears when hovering over the dynamic secret item.Dynamic SecretOnce you click the Generate button, a new secret lease will be generated and the TOTP will be shown to you.Provision Lease