Yubico Forum

...visit our web-store at store.yubico.com
It is currently Tue Jan 30, 2018 3:06 pm

All times are UTC + 1 hour




Post new topic Reply to topic  [ 4 posts ] 
Author Message
 Post subject: YubiRADIUS
PostPosted: Fri Apr 20, 2012 8:23 am 
Offline

Joined: Fri Apr 20, 2012 8:13 am
Posts: 1
First of all, i would like to say thank you for making the radius server available and providing such a large manual with it.
It really helped in configuring the basic stuff.

I do however have a question for you guys.
Currently the Radius server can be configured to append OTP to either a username or a password.
This is quite easy, but sometimes i need passthrough authentication and if i have a password+otp that seems not to work.

For example:
I have setup a Citrix CAG VPX 5.0.4 to work with name + password, offcourse this work fine.
After logging in i get "forwarded" to the webinterface internally that handles the previous authentication by SSO.

if i configure the CAG to authenticate with radius i can enter name+password+otp, but after that the passthrough authentication does not work.
i can however setup the cag to ask for name+password and radius, but then i have to enter the password twice.

So the question is, can the Radius server be configured to handle OTP only ? And if yes how ?

Regards,

Arjan


Top
 Profile  
Reply with quote  

Share On:

Share on Facebook FacebookShare on Twitter TwitterShare on Tumblr TumblrShare on Google+ Google+

 Post subject: Re: YubiRADIUS
PostPosted: Mon Apr 23, 2012 11:26 am 
Offline
Yubico Team
Yubico Team

Joined: Mon Feb 22, 2010 9:49 am
Posts: 183
Hi,

We would encourage you to contact Yubico at support@yubico.com so that we together can test out any options and once we have a working configuration we can post the result back to the forum.

Thanks!
Samir.


Top
 Profile  
Reply with quote  
 Post subject: Re: YubiRADIUS
PostPosted: Tue May 15, 2012 8:26 am 
Offline

Joined: Tue May 15, 2012 8:25 am
Posts: 2
I am also interested in this,

I have both a VPN/citrix cag that I would like to use yubikey as a 2nd factor of authentication and to ensure single sign on I can't combine the password/otp together

Is there any way for the yubi radius to only authentication on the OTP?


Top
 Profile  
Reply with quote  
 Post subject: Re: YubiRADIUS
PostPosted: Wed May 16, 2012 6:48 am 
Offline

Joined: Tue May 15, 2012 8:25 am
Posts: 2
hey guys

i have written a blog post detailing how I modified ropverify.php to only require the OTP for YubiRadius validation.

http://blog.metasplo.it/2012/05/modifyi ... icate.html


Top
 Profile  
Reply with quote  
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 4 posts ] 

All times are UTC + 1 hour


Who is online

Users browsing this forum: No registered users and 0 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
cron
Powered by phpBB® Forum Software © phpBB Group