We have a lot of ODA clients, primarily vendors, who is using this feature. After upgrading to 8.1 and subsequently to 8.2, we found that ODA process - request and authentication - have changed. While we can document the new process, we would like to find out if it is possible to authenticate with PASSCODE only.
Currently, after TOKENCODE is requested, a user can authenticate with this TOKENCODE without appending a PIN. Can it be forced that PASSCODE is required for ODA authentication?