Hello,
Has anyone implemented a Yubico Yubikey to authenticate users login over the internet?
Since we have remote workers and we don’t want unauthorized users to login.
Solved
Yubikey Authenicate
Best answer by Gabriel Michaud
Yes, you could also setup the security at the IIS level (or even one layer above -- VPN). Still, I think using single sign-on is a good practice, as it enables you to manage credentials and permissions centrally, and makes it easy to provision new accounts and disable others when an employee leaves. It also reduces strain on IT team, as users only need to work with one password to access all their applications.
+11Hi Nelson,
I’m not aware of any direct integration with Yubikey, however Acumatica supports single sign-on with Azure ActiveDirectory, ActiveDirectory Federation Services (ADFS) and Okta which all support Yubikey for two-factor authentication.
Some links:
- Yubikey with Azure ActiveDirectory
- Yubikey with ActiveDirectory Federation Services
- Yubikey with Okta
P.S. for Okta, you need to request this through the Acumatica portal
We are self hosted, maybe we can use WebAuthn to secure the website and after the user authenticate via a Yubikey then the user can login via their username and paswword.
+11Yes, you could also setup the security at the IIS level (or even one layer above -- VPN). Still, I think using single sign-on is a good practice, as it enables you to manage credentials and permissions centrally, and makes it easy to provision new accounts and disable others when an employee leaves. It also reduces strain on IT team, as users only need to work with one password to access all their applications.
Reply
Most helpful members this week
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.