Integrating Yubico OTP
In order to use Yubico OTP as a multi-factor authentication type, you must get an API key from Yubico and register the Client ID and Secret Key generated by Yubico in EmpoweID. Upon successful integration, you can add Yubico OTP to any Password Manager Policy as a multi-factor authentication type.
To integrate Yubico OTP
- From the Navigation Sidebar, navigate to the EmpowerID System Settings page by expanding Admin > Miscellaneous and clicking EmpowerID System Settings.
- Search for Yubico. You should see settings for YubicoOTPApiKey and YubicoOTPClientID in the grid.
- From the grid, click the Edit button for the YubicoOTPApiKey setting.
- In the dialog that appears, enter the Secret Key you received from Yubico in the Value field and click Save.
- Back in the grid, click the Edit button for the YubicoOTPClientID setting.
In the dialog that appears, enter the Client ID you received from YUbico in the Value field and click Save.
Now that you have registered your Yubico Client ID and Secret Key in EmpowerID, the next step to using it for MFA in EmpowerID is to add it to a Password Manager policy as a multi-factor authentication type. For directions on how to do so, see Assigning MFA Types to Password Manager Policies.
-
Related Topics
Concepts:
Administrative Procedures:
- Setting the MFA Points Required by Password Manager Policies
- Assigning MFA Types to Password Manager Policies
- Assigning Adaptive Authentication Rules to Password Manager Policies
- Setting the MFA Points Required by Applications
- Assigning MFA Types to Applications
- Editing MFA Type Point Values
- Setting the MFA Points Granted by SSO Connections
- Integrating DUO Two-Factor Authentication
- Registering and Issuing Vasco Hardware OATH Tokens
- Customizing the MFA Retry Limit
User Tasks