Yubico Forum

View unanswered posts | View active topics

Board index » Yubico Software » Web Service Client Software

All times are UTC + 1 hour

yubico-pam with ykval validation server

Page 1 of 1

[ 2 posts ]

Print view

Previous topic | Next topic

Author

Message

mgb

Post subject: yubico-pam with ykval validation server

Posted: Thu Mar 11, 2010 8:22 pm

Joined: Wed Mar 10, 2010 5:53 pm
Posts: 6

Hi guys,

Quick question... yubico-pam has a client-id parameter that the module takes, but shouldn't this be provided per user as part of the mapping file? It seems to me that the ykval server is filtering replay attacks by tracking that id and the OTP, and then YKKSM is validating the OTP portion of the request if the other checks pass. Is the client-id site wide, or is there some other way it needs to be configured? I have a multi user machine I am trying to get dual factor auth working against my own ykval server.

Thanks.

Top

Share On:
	Facebook		Twitter		Tumblr		Google+

samir

Post subject: Re: yubico-pam with ykval validation server

Posted: Fri Mar 12, 2010 1:36 pm

Yubico Team

Joined: Mon Feb 22, 2010 9:49 am
Posts: 183

The Client ID parameter used in the Yubico PAM module is the API ID parameter. The API ID concept is designed to use an API ID per site / application / service and not per YubiKey. For more information, please visit the following forum link:

viewtopic.php?f=3&t=484&p=2053&hilit=per+site#p2053

We hope this helps!

Top

Page 1 of 1

[ 2 posts ]

Board index » Yubico Software » Web Service Client Software

All times are UTC + 1 hour

Who is online

Users browsing this forum: No registered users and 1 guest

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

yubico-pam with ykval validation server

Share On:

Who is online