Yubico Forum

...visit our web-store at store.yubico.com
It is currently Tue Jan 30, 2018 10:54 am

All times are UTC + 1 hour




Post new topic This topic is locked, you cannot edit posts or make further replies.  [ 2 posts ] 
Author Message
PostPosted: Fri Sep 23, 2016 10:10 pm 
Offline

Joined: Fri Jun 10, 2016 4:45 pm
Posts: 3
Apologies for the cross post...

After enabling PIV authentication on macOS Sierra users can still bypass PIV and login with a password, is there a way to disable password authentication for a user and only allow PIV with a PIN as the authentication method?

With regards to setting up PIV authentication for SSH on OS X I can only find instructions (https://developers.yubico.com/yubico-pi ... KCS11.html) based on the scenario where certificates have not yet been generated and PIV is not enabled for macOS graphical authentication.

Are there instructions that show what to do if a Yubikey has already been provisioned with PIV certificates and you're configuring SSH authentication AS WELL as graphical login? Is it just a case of exporting the certificates that have already been generated via the PIV tool and transposing them as needing in the above instructions? I'd prefer something written by someone with more knowledge rather than me just fiddling around :D


Top
 Profile  
 

Share On:

Share on Facebook FacebookShare on Twitter TwitterShare on Tumblr TumblrShare on Google+ Google+

PostPosted: Mon Sep 26, 2016 2:13 pm 
Offline
Site Admin
Site Admin

Joined: Mon Dec 08, 2014 2:52 pm
Posts: 314
double post.


Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic This topic is locked, you cannot edit posts or make further replies.  [ 2 posts ] 

All times are UTC + 1 hour


Who is online

Users browsing this forum: No registered users and 11 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB® Forum Software © phpBB Group