Two Factor Authentication 2FA

Answered

Comments

11 comments

  • Avatar
    Igal

    Kyle,

    Thank you for submitting the request.

    We will take it into consideration.

    0
    Comment actions Permalink
  • Avatar
    Jeff Miller

    Most companies these days use a Single identity provider for authentication and authorization including MFA. We use Azure AD. I would prefer that you support SSO via SAML or OpenIDConnect so we could use Azure AD, MS AD FS, or other identy provider products like Okta. 

    However, if you also supported Radius Authentication then we could use a MS NPS Radius Server with the Azure MFA extension to accomplish the same goal of using our existing identity provider Azure AD for MFA.  We currently do this to require MFA for some apps that don't really support MFA.  The app does not need to know about MFA and authenticates normally to Radius but the NPS server Azure extension sends the request to Azure to get MFA confirmation before returning the succeful login notice to the app.  

    Anything better than just LDAP would be great.   

    0
    Comment actions Permalink
  • Avatar
    Tagir Gadelshin

    Jeff Miller
    Thanks for reaching out to us!
    More info on 2FA and responses from Veronika, who works on 2FA feature can be found on this thread: https://support.networkoptix.com/hc/en-us/community/posts/360039154693-2FA-release

    Also, there you can find some thoughts on SAML and SSO. We are considering this, but there are several challenges we have regarding these features

    0
    Comment actions Permalink
  • Avatar
    Tay Joo Tang

    Hello,

    Would there be efforts to allow/integrate hw key authentication for both local system & Cloud Login?

    We are using Yubikey as a reference.

    https://www.yubico.com/

    Thanks for the kind attention.

    0
    Comment actions Permalink
  • Avatar
    Tagir Gadelshin

    Tay Joo Tang
    Hello!
    I'm not sure.. But we will implement TOTP and yubico has a support page, that describes how to integrate it with TOTP-based 2FA
    https://support.yubico.com/hc/en-us/articles/360013789259-Using-Your-YubiKey-with-Authenticator-Codes

    0
    Comment actions Permalink
  • Avatar
    Permanently deleted user

    Hello Tay Joo Tang, thank you for the idea.

    Alas, there are currently no plans of implementing the hw key authentication.

    0
    Comment actions Permalink
  • Avatar
    Kyle Folger

    I'm thankful for 2FA at least getting implemented, though it's rather disappointing that I submitted this 4 years ago by starting this thread and also mentioned Yubico in the heading so it's not a new request in regards to hardware key authentication. Yubikey works very well.

    0
    Comment actions Permalink
  • Avatar
    Tay Joo Tang

    Thanks Aleksandr for the update.

    Hopefully there will be reviewed consideration in the near future to adopt hw based key authentication. Looking forward to see the 2FA roll out soon. Keep up the great work!  

     

     

     

     

     

    0
    Comment actions Permalink
  • Avatar
    Tagir Gadelshin

    Tay Joo Tang
    Hello!
    I'm not sure.. But we will implement TOTP and yubico has a support page, that describes how to integrate it with TOTP-based 2FA
    https://support.yubico.com/hc/en-us/articles/360013789259-Using-Your-YubiKey-with-Authenticator-Codes
    Take a look, maybe that will cover your case

    0
    Comment actions Permalink
  • Avatar
    Tay Joo Tang

    Hi Tagir,

    Thanks for the info. TOTP actually is pretty good with Yubikey. Assumed this is only planned for now on NX cloud login? 

    Both app and browser based login supported?

     

     

    0
    Comment actions Permalink
  • Avatar
    Tagir Gadelshin

    Tay Joo Tang
    yep, only cloud logins

    We plan to support all login scenarios (mobile, web, desktop) and we hope it will be included in one of our upcoming releases. But no solid ETA, as the feature is not finished yet.

    0
    Comment actions Permalink

Please sign in to leave a comment.