This shows you the differences between two versions of the page.

Link to this comparison view

Next revision
Previous revision
documentation:latest:authyubikey [2016/07/19 12:10] external edit
documentation:latest:authyubikey [2019/01/15 15:54] (current)
Line 1: Line 1:
 ====== Yubikey ====== ====== Yubikey ======
-^  Authentication ​ ^  Users  ^  Password ​ ^ +<note important>​This module has been replaced by [[yubikey2f|Yubikey Second Factor]]</​note>​
-|  ✔  | | |+
-===== Presentation ===== 
-The [[http://​www.yubico.com/​yubikey|Yubikey]] is a small material token shipped by [[http://​www.yubico.com|Yubico]]. It sends an OTP, which is validated against Yubico server. 
- You need [[http://​search.cpan.org/​~massyn/​Auth-Yubikey_WebClient/​|Auth::​Yubikey_WebClient]] package. 
-You need to get an client ID and a secret key from Yubico. See [[https://​upgrade.yubico.com/​getapikey/​|Yubico API]] page. 
-===== Configuration ===== 
-In Manager, go in ''​General Parameters''​ > ''​Authentication modules''​ and choose Yubikey for authentication module. 
-<note tip>You can then choose any other module for users and password.</​note>​ 
-Then, go in ''​Yubikey parameters'':​ 
-  * **Authentication level**: authentication level for this module. 
-  * **API client ID**: API client ID from Yubico 
-  * **API secret key**: API secret key from Yubico 
-  * **OTP public ID part size**: Part of Yubikey OTP that will be used as the media identifier (default: 12) 
-<note tip>You have to register the media identifer in your user backend (LDAP or SQL) to match the yubikey with a real user. For example it can be stored as a second value of the uid attribute in the LDAP directory: 
-  * uid: coudot 
-  * uid: 123456789012 ​