Alexandre_Cagnoni

Comments

• I'm not too familiar with Yubikey's enrollment process, but it seems they provide it in 2 ways: * You use the personalization tool, in order to create the token key, and share it with the authentication backend. * You use the YubiCloud OTP Service, which seems to be the case from this SecurEnvoy video. The OTP…

  in Yubico Yubikey and Authpoint Import as Third Party Token Comment by Alexandre_Cagnoni August 2022
• Good point noticing, Kimmo! There is a way you can enable TOTP with Yubikeys, it requires some external configs, but we have at least one customer with that working!

  in Yubico Yubikey and Authpoint Import as Third Party Token Comment by Alexandre_Cagnoni August 2022
• I would just sync users with AD or Azure AD, the password authentication request is sent to AD/Azure AD, and if it works, a Push is sent to the user. This is the easiest way to do it.

  in SSL or IPSEC Mobile VPN... but WITHOUT Radius? Comment by Alexandre_Cagnoni May 2022
• Some clarification on why we don't support HOTP, or event-based tokens. HOTP is much less secure, since it doesn't have the time component. Let's say you keep pressing the Yubikey token button, so it keeps spitting out OTPs (basically, a counter + seed goes into a HMACSH function). Write down 10 of those OTPs into a piece…

  in Yubico Yubikey and Authpoint Import as Third Party Token Comment by Alexandre_Cagnoni January 2022
• @PeterGV this feature will be on Fireware 12.7 and is entering Beta in the next couple of weeks, please keep an eye on that!

  in SSL or IPSEC Mobile VPN... but WITHOUT Radius? Comment by Alexandre_Cagnoni February 2021
• It really depends on which applications and features you are looking for. For example, in order to protect Windows machines with Azure MFA, you will need to buy a license that includes Windows Hello for Business, that can get very expensive. AuthPoint supports both Windows and Mac logon protection (online and offline), for…

  in AuthPoint or Azure MFA? Comment by Alexandre_Cagnoni September 2020
• Hi @K_Andersson , this has been fixed on the AuthPoint Agent for Windows v2.4, that was in beta for 45 days (or so), and went live yesterday, September 10th. Please download it from the Downloads section in AuthPoint. Hope it helps!

  in UPN with LogonApp - Bypasses MFA completely Comment by Alexandre_Cagnoni September 2020
• It's already under work, planned for Q4

  in SSL or IPSEC Mobile VPN... but WITHOUT Radius? Comment by Alexandre_Cagnoni June 2020
• The Firebox will support AuthPoint directly from the box soon, stay tuned! You won't need the AuthPoint Gateway, unless you want to authenticate or synchronize your users with a local AD Server.

  in SSL or IPSEC Mobile VPN... but WITHOUT Radius? Comment by Alexandre_Cagnoni August 2019
• AuthPoint support directly inside the Firebox, without the need of the AuthPoint Gateway, is coming up in Q4. Stay tuned!

  in Utilize AuthPoint with Firebox-DB Comment by Alexandre_Cagnoni August 2019
• Hi, you can enable PIN/biometric for the token, so you can still see the notification, but approve only if you use your fingerprint or PIN. In the top right menu, go to Token Security and enable PIN/biometric for this token.

  in Android App Allows Authorization Without Unlocking - Can we prevent? Comment by Alexandre_Cagnoni April 2019