Personal tools
You are here: Home support WiKID Documentation Center Installation How-tos WiKID Quickstart Installation Cheatsheet - ISO and VMware Version 3.x

WiKID Quickstart Installation Cheatsheet - ISO and VMware Version 3.x

This How-to applies to: WiKID Strong Authentication Server Enterprise Edition, WiKID Strong Authentication Server Community Edition
This How-to is intended for: System Administrator

For those that prefer their documentation quick and simple. This document assumes that you have installed the RPMs or are using the ISO or vmware versions.

Thank you for choosing WiKID Systems for your two-factor authentication needs! While we recommend reading the complete Quickstart Guide to get a full understanding of how the WiKID Authentication System works, we realize that not everyone will read the fine manual. Use this at your own risk!

Before you start, you will need an externally routable IP address, an internally routable IP address, ethernet connections and the associated information (gateway, DNS, etc.)

.
  1. Turn on the box. At the terminal, you will get a prompt. Enter the username root and the password wikid. Set your timezone and change the root password, as prompted.
  2. Type wikidctl setup and enter the appropriate information. N.B.: when configuring the SSL certificate you will be asked for your first and last name – enter the fully qualified domain name instead! If you have only one WiKID server, enter N when prompted about replication.
  3. Type 'wikidctl start'
  4. From a web browser, go to http://(ipaddress or fully qualified domain name)/ WiKIDAdmin/. Enter WiKIDAdmin as the username and 2Factor as the password.
  5. Click on the Configuration tab and click on Create an Intermediate CA. Fill in the appropriate information and hit submit. You will see a link to submit the CA for processing. Submit you signing request and you will receive the signed certificate back. Do not lose or forget this passphrase, you will use it to start the WiKID server.
  6. Copy the certificate to the clipboard and go to the Configuration page and select Install the Intermediate CA. Paste the CA here, enter the password you used in the previous step and submit.
  7. Return to the Configuration page and select Create a LocalHost Certificate.
  8. Return to the WiKID server terminal or SSH to the server and type wikidctl restart. Once the server has stopped, type start. When prompted, type the passphrase you created for the Intermediate CA. (N.B.: There is a known issue with the WiKID built-in Radius service - you will also have perform this restart when enabling Radius and when adding a Radius network client.
  9. Log back into the WiKIDAdmin web interface. Select the Domains tab and click Create New Domain. Enter a domain name, a device domain name and for the domain identifier enter the zero-padded IP address of the server. Thus, 206.189.30.1 becomes 206189030001.
  10. Start your WiKID client/token and select New Domain. Enter the domain identifier you created on the server. Enter your desired PIN. You will get a registration code.
  11. Go back to the WiKIDAdmin web interface. Select the Users tab and select Manually Validate a User. You will see your registration code. Click on it and enter your username.
  12. Now enable protocol modules (such as LDAP and Radius) from the Configuration page and add network clients from the Network Client page.

Congratulations! You've got two-factor authentication!