| Yubico Forum https://forum.yubico.com/ |
|
| YubiRADIUS https://forum.yubico.com/viewtopic.php?f=5&t=787 |
Page 1 of 1 |
| Author: | R2ArjanB [ Fri Apr 20, 2012 8:23 am ] |
| Post subject: | YubiRADIUS |
First of all, i would like to say thank you for making the radius server available and providing such a large manual with it. It really helped in configuring the basic stuff. I do however have a question for you guys. Currently the Radius server can be configured to append OTP to either a username or a password. This is quite easy, but sometimes i need passthrough authentication and if i have a password+otp that seems not to work. For example: I have setup a Citrix CAG VPX 5.0.4 to work with name + password, offcourse this work fine. After logging in i get "forwarded" to the webinterface internally that handles the previous authentication by SSO. if i configure the CAG to authenticate with radius i can enter name+password+otp, but after that the passthrough authentication does not work. i can however setup the cag to ask for name+password and radius, but then i have to enter the password twice. So the question is, can the Radius server be configured to handle OTP only ? And if yes how ? Regards, Arjan |
|
| Author: | samir [ Mon Apr 23, 2012 11:26 am ] |
| Post subject: | Re: YubiRADIUS |
Hi, We would encourage you to contact Yubico at support@yubico.com so that we together can test out any options and once we have a working configuration we can post the result back to the forum. Thanks! Samir. |
|
| Author: | james trevaskis [ Tue May 15, 2012 8:26 am ] |
| Post subject: | Re: YubiRADIUS |
I am also interested in this, I have both a VPN/citrix cag that I would like to use yubikey as a 2nd factor of authentication and to ensure single sign on I can't combine the password/otp together Is there any way for the yubi radius to only authentication on the OTP? |
|
| Author: | james trevaskis [ Wed May 16, 2012 6:48 am ] |
| Post subject: | Re: YubiRADIUS |
hey guys i have written a blog post detailing how I modified ropverify.php to only require the OTP for YubiRadius validation. http://blog.metasplo.it/2012/05/modifyi ... icate.html |
|
| Page 1 of 1 | All times are UTC + 1 hour |
| Powered by phpBB® Forum Software © phpBB Group https://www.phpbb.com/ |
|