|
To give some more information: We are setting up a secure environment at work for projects that are controlled per NIST 800-171, which is more or less the corporate/public version of NITS 800-53. This requires, among other things, two factor authentication for some things. We are using Yubikeys in particular the NIST PIV smartcard function. Works great, we have a set up CAs set up, certificates associated with AD accounts, and computers happily logging in using Yubikey and PIN.
Well the whole thing is going to live behind some PFSense firewalls so I'd like to do 2-factor with their Webadmin as well, if I can. However I can't work out any way to making them auth against the Yubikey. It's pretty clearly something they are not designed to support by default.
Anyone ever do this, or have any ideas to try? Wouldn't have to be using the smart card feature (though that would be the nicest) U2F or anything else would work as well.
|
Login
FAQ
Search
