Yubico Forum https://forum.yubico.com/ |
|
Using Yubikey NEO with AD CS? https://forum.yubico.com/viewtopic.php?f=23&t=928 |
Page 1 of 1 |
Author: | witcmdw [ Thu Jan 24, 2013 10:18 pm ] |
Post subject: | Using Yubikey NEO with AD CS? |
I am a new Yubikey-owner and -user, and as part of my IT consulting work am checking the possibilities for using Yubikeys in Windows AD environments. I have read several technical documents about AuthLite, but am actually wondering if the Yubikey NEO can be used in connection with Active Directory Certificate Services (AD CS) since the NEO includes smartcard/PKI functionality? Will there always be the need for some form of "middleware"? I am still learning about the different pieces needed for a two-factor authentication in AD, feel free to point me in the right direction... Thanks for reading and best regards Maurice Wörnhard |
Author: | Tom [ Fri Jan 25, 2013 9:02 am ] |
Post subject: | Re: (Cross-Post) Using Yubikey NEO with AD CS? |
Hello there, The NEO itself has a PKI co-processor so we can support PKI operations, but a suitable Javacard applet has to be loaded to support the desired functionality. CCID mode - the NEO can act in three modes, see http://www.yubico.com/2012/12/yubikey-n ... te-device/ NFC - phone is just receiver at that end, all secrets are stored in the NEO. |
Page 1 of 1 | All times are UTC + 1 hour |
Powered by phpBB® Forum Software © phpBB Group https://www.phpbb.com/ |