Presentation is loading. Please wait.

Presentation is loading. Please wait.

Alfresco and 2 Factor Authentication Ermanno Russo Developer at Zaizi.

Published byAmie Walters Modified over 8 years ago

Similar presentations

Presentation on theme: "Alfresco and 2 Factor Authentication Ermanno Russo Developer at Zaizi."— Presentation transcript:

1 Alfresco and 2 Factor Authentication Ermanno Russo Developer at Zaizi

2 What is 2 factor authentication?

3 Initial setup User. Chooses to setup 2FA Server. Generates a secret. Associates it with the user’s account. Makes it available to the user User. Stores the secret in a specific device

4 Initial setup User. Chooses to setup 2FA Server. Generates a secret. Associates it with the user’s account. Makes it available to the user User. Stores the secret in a specific device

5 How does the login work? User. Device combines secret + current time. Types the code along with credentials

6 How does the login work? User. Device combines secret + current time. Types the code along with credentials Server. Retrieves the user’s secret. Computes the code itself from it

7 How does the login work? User. Device combines secret + current time. Types the code along with credentials Server. Retrieves the user’s secret. Computes the code itself from it. Checks it matches. Checks normal user/password

8 To put it simply Like a second password - Provided by a device - You don't have to remember it - Changes automatically every 30sec - If the device is stolen, the thief still doesn't know your credentials

9 To put it simply Like a second password - Provided by a device - You don't have to remember it - Changes automatically every 30sec - If the device is stolen, the thief still doesn't know your credentials

10 Why use 2 factor authentication? Password

11 Why use 2 factor authentication? (2) Password + code Password + Outdated code

12 What about Alfresco?

13 Google Authenticator IETF RFC 6238

14 S etup screen

15

16 L ogin screen

17

18 Device lost - Admin help

19 Reducing manual admin intervention. Saving the secret somewhere safe. Disposable time agnostic codes

20 Reducing manual admin intervention. Saving the secret somewhere safe. Disposable time agnostic codes

21 Conclusion Something you know. Your password Something you have. Your decoding device

22 Resources RFC 6238 http://tools.ietf.org/html/rfc6238 Install Google Authenticator app https://support.google.com/accounts/answer/1066447 ?hl=ens/answer/1066447 ?hl=en Any question welcome erusso@zaizi.comerusso@zaizi.com

Download ppt "Alfresco and 2 Factor Authentication Ermanno Russo Developer at Zaizi."

Similar presentations

User Authentication on Mobile Devices Google Two Factor Authentication OTP (One Time Password)

User Authentication on Mobile Devices Google Two Factor Authentication OTP (One Time Password)
Windows XP System Restore July 22 nd, 2006 CAEUG Meeting.

Windows XP System Restore July 22 nd, 2006 CAEUG Meeting.
Forms Authority Database Store Username and Passwords: ASP.NET framework allows you to control access to pages, classes, or methods based on username and.

Forms Authority Database Store Username and Passwords: ASP.NET framework allows you to control access to pages, classes, or methods based on username and.
Safe  Secure  Reliable. Traceloc is a Location tracker application for Tracking the movement of your phone or device. Install this App to your target.

Safe  Secure  Reliable. Traceloc is a Location tracker application for Tracking the movement of your phone or device. Install this App to your target.
Two-Factor Authentication & Tools for Password Management August 29, 2014 Pang Chamreth, IT Development Innovations 1.

Two-Factor Authentication & Tools for Password Management August 29, 2014 Pang Chamreth, IT Development Innovations 1.
Two Factor Authentication (TFA) is a 100% Open Source, free to use security system for your Joomla site’s backend. Two Factor Authentication works in.

Two Factor Authentication (TFA) is a 100% Open Source, free to use security system for your Joomla site’s backend. Two Factor Authentication works in.
(NHA) The Laboratory of Computer Communication and Networking Network Host Analyzer.

(NHA) The Laboratory of Computer Communication and Networking Network Host Analyzer.
PASSWORD MANAGER Why you need one 1. WHAT IS A PASSWORD MANAGER? A modern Password Manager is a browser extension (Chrome, Internet Explorer, Firefox,

PASSWORD MANAGER Why you need one 1. WHAT IS A PASSWORD MANAGER? A modern Password Manager is a browser extension (Chrome, Internet Explorer, Firefox,
Setting Up your School iPad A quick guide. 1. Setting up iCloud When you turn it on for the first time, your iPad will take you through a set up process.

Setting Up your School iPad A quick guide. 1. Setting up iCloud When you turn it on for the first time, your iPad will take you through a set up process.
Leading at Every Turn. 1)Make sure you have your Trusted Sites configured properly in Internet Explorer 2)Store your credentials on your PC so you.

Leading at Every Turn. 1)Make sure you have your Trusted Sites configured properly in Internet Explorer 2)Store your credentials on your PC so you.
PASSWORD MANAGEMENT MADE EASY A Project Play Date - September 26, 2008 Beth Carpenter, Library Services Manager, Outagamie Waupaca Library System.

PASSWORD MANAGEMENT MADE EASY A Project Play Date - September 26, 2008 Beth Carpenter, Library Services Manager, Outagamie Waupaca Library System.
Confidential - © 2012 StreamWIDE © StreamWIDE 2014 1.

Confidential - © 2012 StreamWIDE © StreamWIDE
 Password is what you set or student number  User name is  first 5 letters of last name  nelso  First 3 letters of first name  kar  Looks like:

 Password is what you set or student number  User name is  first 5 letters of last name  nelso  First 3 letters of first name  kar  Looks like:
How KeePass password safe can save you time and energy

How KeePass password safe can save you time and energy
Once you have contacted me to set up a new account, your computer needs to be configured to dial into.DevlinEx and use our servers for things like email.

Once you have contacted me to set up a new account, your computer needs to be configured to dial into.DevlinEx and use our servers for things like .
Extending Forefront beyond the limit TMG UAG ISA IAG Security Suite www.SecureMobileEmail.com www.AGATSolutions.com.

Extending Forefront beyond the limit TMG UAG ISA IAG Security Suite
Student iPad WebDAV Setup Guide. First WebDAV needs to be downloaded from the App Store. 1) Tap “App Store”

Student iPad WebDAV Setup Guide. First WebDAV needs to be downloaded from the App Store. 1) Tap “App Store”
 In Karnataka, Digital Signatures are being extensively used in various projects right from delivery of citizen centric services through various projects.

 In Karnataka, Digital Signatures are being extensively used in various projects right from delivery of citizen centric services through various projects.
Welcome to MyBethel, Powered by CCBBETHEL CLEVELAND Confidential 1 Energy & Construction 2011 Business Plan Review Getting Started: Request a Username.

Welcome to MyBethel, Powered by CCBBETHEL CLEVELAND Confidential 1 Energy & Construction 2011 Business Plan Review Getting Started: Request a Username.
Instructions for Administrators Choose the Enrollment slide decks that match your environment, either for SaaS or On Premise. Edit the red text to match.

Instructions for Administrators Choose the Enrollment slide decks that match your environment, either for SaaS or On Premise. Edit the red text to match.

Similar presentations

Ads by Google