One Identity Safeguard for Privileged Sessions 6.0.2 - YubiKey Multi-Factor Authentication

Chat now with support

Get Live Help
Complete Registration

Sign In

Request Pricing

Contact Sales

One Identity Safeguard for Privileged Sessions 6.0.2 - YubiKey Multi-Factor Authentication - Tutorial

Introduction Technical requirements How SPS and YubiKey work together in detail Notable features Configure your YubiKey account for SPS Configure SPS to use YubiKey multi-factor authentication SPS YubiKey plugin parameter reference

[yubikey] [auth] [connection_limit by=client_ip_gateway_user] [authentication_cache] [WHITELIST]

[whitelist source=user_list] [whitelist source=ldap_server_group]

[USERMAPPING]

[usermapping source=explicit] [usermapping source=ldap_server]

[username_transform] [ldap_server] [credential_store] [logging] [https_proxy] [question_1]

Store sensitive plugin data securely Perform multi-factor authentication with the SPS YubiKey plugin in terminal connections Perform multi-factor authentication with the SPS YubiKey plugin in Remote Desktop connections

[users]

This section contains user-YubiKey pairs.

[users]
<exampleuser1>=abcdefghijkl
<exampleuser2>=mnopqrstuvwy

<exampleuser>

Type:	string
Required:	no
Default:	N/A

Description: To pair YubiKeys with users, you have three options:

Retrieve it from userattribute through LDAP/AD.
Define a [users] section in the configuration file using the user=deviceid format.
Store the the user/device mapping in a credential store with the usual syntax: host=users, user=exampleuser, password=deviceid.

Use the second ([users] section) option only if there are not too many users, or for testing purposes. If there are too many users, it can cause performance issues.

Please select your product:

To serve you better, please complete the Purpose of your Chat:

Recommended Solutions for Your Problem

One Identity Safeguard for Privileged Sessions 6.0.2 - YubiKey Multi-Factor Authentication - Tutorial

[users]

<exampleuser>