...
- Home
- Single Sign On
- Authentication Options
- Multifactor Authentication
- Current: Integrating Yubico OTP
...
Integrating Yubico OTP
...
In order to use Yubico OTP as a multi-factor authentication type, you must get an API key from Yubico and register the
...
Client ID
...
and Secret Key
...
generated by Yubico in
...
EmpowerID. Upon successful integration, you can add Yubico OTP to any Password Manager Policy as a multi-factor authentication type
...
.
Style | ||
---|---|---|
| ||
To integrate Yubico
OTP1. FromOTP
- In the Navigation Sidebar,
- expand Admin, then Miscellaneous and click EmpowerID System Settings.
- To obtain Yubico APIKey and ClientID, go to https://upgrade.yubico.com/getapikey/ and enter a valid email address along with the Yubico OTP from any of your YubiKeys.
- Search for Yubico. Settings for YubicoOTPApiKey and YubicoOTPClientID appear in the grid.
- From the grid, click the
- Edit
- button for the
- YubicoOTPApiKey
- setting.
- In the dialog that appears, enter the
- Secret Key
- you received from Yubico in the
- Value
- field and click
- Save
- .
- Back in the grid, click the
- Edit
- button for the
- YubicoOTPClientID
- setting.
- In the dialog that appears, enter the
- Client ID
- you received from
- Yubico in the
- Value
- field and click
- Save
- .
Tip |
---|
Now that you have registered your Yubico Client ID and Secret Key in EmpowerID, the next step to using it for MFA in EmpowerID is to add it to a Password Manager policy as a multi-factor authentication type. For directions on how to do so, see |
. |
Concepts:
Administrative Procedures:
- Setting the MFA Points Required by Password Manager Policies
- Assigning MFA Types to Password Manager Policies
- Assigning Adaptive Authentication Rules to Password Manager Policies
- Setting the MFA Points Required by Applications
- Assigning MFA Types to Applications
- Editing MFA Type Point Values
- Setting the MFA Points Granted by SSO Connections
- Integrating DUO Two-Factor Authentication
- Registering and Issuing Vasco Hardware OATH Tokens
- Customizing the MFA Retry Limit