Yubico Forum

...visit our web-store at store.yubico.com
It is currently Tue Jan 30, 2018 7:10 pm

All times are UTC + 1 hour




Post new topic Reply to topic  [ 4 posts ] 
Author Message
PostPosted: Tue Jun 17, 2008 8:20 am 
Offline
User avatar

Joined: Wed May 07, 2008 5:25 pm
Posts: 110
Location: Sunnyvale, California
Hi, folks,

If you like to host your own Yubikey OTP validation server, here is the Java-based solution:

http://code.google.com/p/yubikey-server-j/

Follow the setup guide to get it running. Let us know of further questions and comments.

Cheers
:)

_________________
The YubiKey Server Guy


Top
 Profile  
Reply with quote  

Share On:

Share on Facebook FacebookShare on Twitter TwitterShare on Tumblr TumblrShare on Google+ Google+

PostPosted: Thu Jun 19, 2008 8:02 am 
Offline
User avatar

Joined: Wed May 07, 2008 5:25 pm
Posts: 110
Location: Sunnyvale, California
I'm answering 2 questions from emails:

[1] Yes this is the same server Yubico uses at api.yubioc.om

[2] Java doc was added, how could I forget it?!

yubico-val-server/javadoc/index.html

:geek:

_________________
The YubiKey Server Guy


Top
 Profile  
Reply with quote  
PostPosted: Wed Jul 30, 2008 4:30 am 
Offline

Joined: Wed Jul 30, 2008 4:22 am
Posts: 1
Hi!
I'm trying to deploy the management server in java and it seems I need the AES keys for validation. How can I get the AES keys?

Thanks


Top
 Profile  
Reply with quote  
PostPosted: Thu Jul 31, 2008 2:24 am 
Offline
User avatar

Joined: Wed May 07, 2008 5:25 pm
Posts: 110
Location: Sunnyvale, California
Folks, here is a new way, the web way of retrieving your AES keys here and now:

viewtopic.php?f=5&t=185

Cheers


Below was the old way of doing it:

If you host your own Yubikey OTP validation server, you need to import your Yubikeys' secret AES keys into your validation server database. In order to get the AES keys, please send the following to Support@Yubico.com:

[1] 2 consecutive OTPs generated from each Yubikey as proof of possession.

[2] Your GPG (or PGP) public key so we can encrypt your AES keys to send to you. It looks like this:

Code:
-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v1.4.6 (GNU/Linux)

mQAibEBu3XMRBACFxPv0eOj4+7KudZLTN7oGT2BPJ9wV4J8SB0JnppJdZfN/hi6p
BS9zEG2Hht/DJ/fsBOVcLUEq6Ku6FdzmPZ5+eTUM7kRME9rH6uPZj2yTlB6wvbqv
....
GYefNrh2XZcUar8NAJ98NoFkbPdcLVvjFc/NMWzfAvVzFg==
=7D2l
-----END PGP PUBLIC KEY BLOCK-----



*GPG is free to use. If you need help on GPG, here is a very well written and authoritative doc at:

http://www.gnupg.org/gph/en/manual.html


[3] By default Yubico generates a CSV file with your keys. If you tell us which validation server you use, or what kind of SQL INSERT statement you want, Yubico can generate the SQL script for you to insert them all into your database in a snap.

---

Though we can still send you in plain text if you like but we suggest them encrypted by your public key, so no one else can decrypt and use your AES secrets.

Protect the secret after you got it. Since if stolen, someone can clone a Yubikey identical as yours.

Regards :geek:

_________________
The YubiKey Server Guy


Top
 Profile  
Reply with quote  
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 4 posts ] 

All times are UTC + 1 hour


Who is online

Users browsing this forum: No registered users and 3 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB® Forum Software © phpBB Group