Yubico Forum

...visit our web-store at store.yubico.com
It is currently Tue Jan 30, 2018 11:46 am

All times are UTC + 1 hour




Post new topic Reply to topic  [ 2 posts ] 
Author Message
PostPosted: Fri Apr 06, 2012 11:53 am 
Offline

Joined: Fri Apr 06, 2012 11:44 am
Posts: 4
Hi, does anyone have any experience setting up Forefront TMG to use YubiRADIUS. (I have YubiRADIUS setup as an Active Directory client)

I can setup TMG to use 'Radius OTP' on it's listener, so the form page appears asking for username, passcode (ie: Password+OTP) and internal password, however this requires the user to enter their password twice (Once so that the YubiRADIUS can perform the 2FA, and then again so the internal service can be delegated the credentials required).

From my reading on the internet, it appears I need to get the YubiRADIUS to send 'access-challenge' to TMG to get it so that the user can first enter their normal username/password and then when it received 'access-challenge', TMG asks the user for their OTP, keeping their password and otp separate and therefore allowing delegation to occurr after TMG has completed the 2FA with YubiRADIUS.

I hope this makes sense! If not please correct me as this is all a bit new to me and i'm keen to learn.


Top
 Profile  
Reply with quote  

Share On:

Share on Facebook FacebookShare on Twitter TwitterShare on Tumblr TumblrShare on Google+ Google+

PostPosted: Wed Apr 11, 2012 11:06 am 
Offline
Yubico Team
Yubico Team

Joined: Mon Feb 22, 2010 9:49 am
Posts: 183
Hi,

We believe it is possible to configurable the MS FUAG to not require double authentications but we would encourage you to contact Yubico at support@yubico.com so that we together can test out any options and once we have a working configuration we can post the result back to the forum.

Thanks!
Samir.


Top
 Profile  
Reply with quote  
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 2 posts ] 

All times are UTC + 1 hour


Who is online

Users browsing this forum: No registered users and 1 guest


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
cron
Powered by phpBB® Forum Software © phpBB Group