Hi everybody. I've a question about Authentication Manager product. How do I configure multi-factor authentication in "security console" page, for ldap users that use sc with tokens management purpose?
Thanks. Have a nice day.
Hi everybody. I've a question about Authentication Manager product. How do I configure multi-factor authentication in "security console" page, for ldap users that use sc with tokens management purpose?
Thanks. Have a nice day.
If you set the Security Console to SecurID only, you could lock your self out, if time on the server goes wrong or something happens to tokens. If that happened, you would need console or SSH access and knowledge of an Operations Console USerID and Password to unlock
Thanks for your reply. We've a "suadmin" internal database local account; could be an emergency way of access or it will be subject to multi-factor auth too? Anyway, as last resort, we will able to login through ssh connection and "rsa admin" credentials.
Basically there are three main Admin accounts, but the name of each account could be anything;
1. SuperAdmin (or lesser role) for the Security Console https://<fqdn>:7004/console-ims, e.g. admin
2. Operations Console logon https://<fqdn>:7072/operations-console e.g. ocadmin
3. Operating System account for Console or SSH access, default name is rsaadmin
You can configure Authentication Methods for the Security Console in the Security Console - Setup - System, On the Left under [Customization] is Security Console Authentication. Similar to Authentication for Self Service Console.
Choices are Password - either Internal Database or LDAP, or SecurID_Native. Putting slashes / between means OR, so user can have choice. If you want to force Passcodes, only put SecurID_Native