Comments
-
I'm not too familiar with Yubikey's enrollment process, but it seems they provide it in 2 ways: * You use the personalization tool, in order to create the token key, and share it with the authentication backend. * You use the YubiCloud OTP Service, which seems to be the case from this SecurEnvoy video. The OTP…
-
Good point noticing, Kimmo! There is a way you can enable TOTP with Yubikeys, it requires some external configs, but we have at least one customer with that working!
-
I would just sync users with AD or Azure AD, the password authentication request is sent to AD/Azure AD, and if it works, a Push is sent to the user. This is the easiest way to do it.
-
Some clarification on why we don't support HOTP, or event-based tokens. HOTP is much less secure, since it doesn't have the time component. Let's say you keep pressing the Yubikey token button, so it keeps spitting out OTPs (basically, a counter + seed goes into a HMACSH function). Write down 10 of those OTPs into a piece…
-
@PeterGV this feature will be on Fireware 12.7 and is entering Beta in the next couple of weeks, please keep an eye on that!
-
It really depends on which applications and features you are looking for. For example, in order to protect Windows machines with Azure MFA, you will need to buy a license that includes Windows Hello for Business, that can get very expensive. AuthPoint supports both Windows and Mac logon protection (online and offline), for…
-
Hi @K_Andersson , this has been fixed on the AuthPoint Agent for Windows v2.4, that was in beta for 45 days (or so), and went live yesterday, September 10th. Please download it from the Downloads section in AuthPoint. Hope it helps!
-
It's already under work, planned for Q4
-
The Firebox will support AuthPoint directly from the box soon, stay tuned! You won't need the AuthPoint Gateway, unless you want to authenticate or synchronize your users with a local AD Server.
-
AuthPoint support directly inside the Firebox, without the need of the AuthPoint Gateway, is coming up in Q4. Stay tuned!
-
Hi, you can enable PIN/biometric for the token, so you can still see the notification, but approve only if you use your fingerprint or PIN. In the top right menu, go to Token Security and enable PIN/biometric for this token.