User Tools
lion:2fa:introduction
Differences
This shows you the differences between two versions of the page.
| Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
| lion:2fa:introduction [2021/09/15 06:38] – [Where] deul | lion:2fa:introduction [2021/09/22 11:25] (current) – [How] deul | ||
|---|---|---|---|
| Line 6: | Line 6: | ||
| We need to put a stop to that, and the only way to do that is to introduce a second step in identifying that you are the rightful owner of the account credentials. This second step is provided throught the Two-Factor Authentication (2FA) mechanism. For this second verification, | We need to put a stop to that, and the only way to do that is to introduce a second step in identifying that you are the rightful owner of the account credentials. This second step is provided throught the Two-Factor Authentication (2FA) mechanism. For this second verification, | ||
| + | Although we have done our best to make use of the university system, they were unwilling to cooperate. Therefore we had to buy and implement our own commercial multi factor aruthentication system, independent of the central system. Unfortunately you will have to deal with both systems separately. | ||
| ====Where==== | ====Where==== | ||
| In principle for every service where you need to identify yourself, 2FA is needed. In the beginning we will restrict 2FA to two major services: Web pages and ssh remote login. At a later stage 2FA will be implemented for other services as well. You will be informed well in advance. | In principle for every service where you need to identify yourself, 2FA is needed. In the beginning we will restrict 2FA to two major services: Web pages and ssh remote login. At a later stage 2FA will be implemented for other services as well. You will be informed well in advance. | ||
| Line 17: | Line 18: | ||
| For the purpose of accessing your home adn data share you used to access the physics ssh3 server. But, due to incompatibilities between the 2FA and automatic mounting of shares that way of accessing your shares will not be available anymore. The VPN facility replaces this functionality and allows your personal computer device to become part of the Physics network. Once that is the case you can mount your personal home and data disks in the usual way through the Windows File Explorer (or samba mount). | For the purpose of accessing your home adn data share you used to access the physics ssh3 server. But, due to incompatibilities between the 2FA and automatic mounting of shares that way of accessing your shares will not be available anymore. The VPN facility replaces this functionality and allows your personal computer device to become part of the Physics network. Once that is the case you can mount your personal home and data disks in the usual way through the Windows File Explorer (or samba mount). | ||
| ====How==== | ====How==== | ||
| - | The 2FA protocol that we have implemented is based on the [[https:// | + | The 2FA protocol that we have implemented is based on the [[https:// |
lion/2fa/introduction.1631687925.txt.gz · Last modified: by deul
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
