This section contains user-YubiKey pairs.
[users] <exampleuser1>=abcdefghijkl <exampleuser2>=mnopqrstuvwy
<exampleuser>
| Type: | string |
| Required: | no |
| Default: | N/A |
Description: To pair YubiKeys with users, you have three options:
-
Retrieve it from userattribute through LDAP/AD.
-
Define a [users] section in the configuration file using the user=deviceid format.
-
Store the the user/device mapping in a credential store with the usual syntax: host=users, user=exampleuser, password=deviceid.
Use the second ([users] section) option only if there are not too many users, or for testing purposes. If there are too many users, it can cause performance issues.