Yubico Forum https://forum.yubico.com/ |
|
[Question] What to do with YubiApp Registration Limit? https://forum.yubico.com/viewtopic.php?f=29&t=1035 |
Page 1 of 1 |
Author: | agizmo [ Thu Apr 11, 2013 8:40 pm ] |
Post subject: | [Question] What to do with YubiApp Registration Limit? |
Hi everyone, Currently I have YubiRADIUS setup in a pilot to act as a 2-factor authentication system for my university's Palo Alto firewall SSL VPN. We bought some YubiKeys, re-programmed them using the personalization tool, and imported the information into the server. Everybody appears to like the Yubikey solution over our old 2-factor authentication system and I am starting to expand the system to support smart devices with YubiApp. Testing with my own account looks to be going okay, but I have some concerns regarding the long term use of keys. Based on information posted here in the forum I already know its not possible to delete YubiKeys from the YubiRADIUS server (physical or YubiApp). When looking at the YubiApp registration page I also see that for one physical YubiKey you can only register 3 more keys for YubiApps. So what do I do once I have created 3 YubiApp keys and need to generate a new one? For example, I'm already using two right now (one for my Android phone and one for my iPad). When I replace my phone next year I will have to generate a new key which will total 3. What happens if I replace my iPad and want to setup YubiApp? On the YubiApp Registration page of my server, if I try to upload an AES key for "YubiKey Type: Key 1" I get the message "You have already registered YubiApp for the chosen YubiKey Type." Is there any other answer than just saying, "You will have to reprogram the physical YubiKey and then regenerate keys for your YubiApp devices"? Thanks for the support. |
Author: | samir [ Wed Jul 31, 2013 12:28 pm ] |
Post subject: | Re: [Question] What to do with YubiApp Registration Limit? |
Hello, Yes! You will have to reprogram the physical YubiKey and then regenerate keys for your YubiApp devices. Thanks and best regards, Samir. |
Page 1 of 1 | All times are UTC + 1 hour |
Powered by phpBB® Forum Software © phpBB Group https://www.phpbb.com/ |