Sophos one time password: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
(3 dazwischenliegende Versionen von einem anderen Benutzer werden nicht angezeigt) | |||
Zeile 18: | Zeile 18: | ||
*"Mit Anmeldung fortfahren" | *"Mit Anmeldung fortfahren" | ||
==Manually adding Tokens== | ==Manually adding Tokens== | ||
− | * | + | *Go on a Linux System |
− | ** | + | **Open terminal |
− | ** | + | ***Type "openssl rand -hex 64" |
− | ** | + | ****Copy Secret |
− | ** | ||
*Enter secret here: | *Enter secret here: | ||
**Click on the green "+" | **Click on the green "+" | ||
+ | **Enter generated HEX in the "Secret" field | ||
**Change settings as required | **Change settings as required | ||
[[Datei: sophos-otp-software-man.png]] | [[Datei: sophos-otp-software-man.png]] | ||
+ | *Add to App | ||
+ | **Click on the grey "i" icon afterwards to get the QR-Code | ||
+ | **Scan QR-Code with desired Authenticator APP | ||
+ | |||
+ | *Source: | ||
+ | https://community.sophos.com/kb/en-us/120324 | ||
==Login== | ==Login== |
Aktuelle Version vom 16. Dezember 2022, 11:28 Uhr
Enable OTP
- Go to Sophos WebAdmin
Navigate:
- Definitions & Users -> Authentication Services -> One-time Password
- enable it
Software Token
Settings
- customize as required
Auto-Generate-Token
Activate
- Go to User Portal
- Login
- Scan QR Code with Authenticator App (e.g. Sophos-/Google Authenticator)
- "Mit Anmeldung fortfahren"
Manually adding Tokens
- Go on a Linux System
- Open terminal
- Type "openssl rand -hex 64"
- Copy Secret
- Type "openssl rand -hex 64"
- Open terminal
- Enter secret here:
- Click on the green "+"
- Enter generated HEX in the "Secret" field
- Change settings as required
- Add to App
- Click on the grey "i" icon afterwards to get the QR-Code
- Scan QR-Code with desired Authenticator APP
- Source:
https://community.sophos.com/kb/en-us/120324
Login
login schema
Username: username Password: passwordTOKEN
Hardware Token
Assign token to user
- press the green "+"
- change settings as desired
Login
It's similar to how you login with a software token exept you get the token from the Hardware Token instead of the Authenticator App.