| *** nowen (~nowen@adsl-74-176-212-133.asm.bellsouth.net) has joined #wikid | 13:30 | |
| *** prowlah has quit (Ping timeout: 244 seconds) | 15:46 | |
| *** Tony_ (c0e7a202@gateway/web/freenode/ip.192.231.162.2) has joined #wikid | 16:14 | |
| Tony_ | hello? | 16:14 |
|---|---|---|
| nowen | hi | 16:14 |
| Tony_ | anyone working with Sonicwall and Wikid? | 16:16 |
| nowen | probably not at the moment, but it does work | 16:16 |
| Tony_ | yeah I have it working but I am a little confused on how it is truly 2 Factor Authentication | 16:16 |
| nowen | The two factors are possession of the private key embedded in the token and knowledge of the PIN. | 16:17 |
| nowen | you can thing of WiKID like certs, except more secure b/c the PIN is validated on the server | 16:18 |
| nowen | and there is no 'infrastructure' just flat public/private keys | 16:19 |
| Tony_ | so the PIN is not just a stored key on the client device it is also stored on the server? | 16:19 |
| *** prowlah (~prowlah@unaffiliated/prowlah) has joined #wikid | 16:19 | |
| nowen | the PIN is not stored on the client at all, only on the server | 16:19 |
| Tony_ | oh really? | 16:19 |
| Tony_ | nice | 16:19 |
| Tony_ | Ok we are planning on using the smart phone apps for token retrieval. If the phone is lost and the PIN is compromised, we are vulnerable right? | 16:21 |
| nowen | when the PIN is entered, it is encrypted and sent to the server, if the encryption is valide, the account active and the PIN correct, the OTP is generated on the server, encrypted and returned to the users | 16:21 |
| nowen | Yes - if both factors are compromised, the system is compromised | 16:21 |
| Tony_ | very cool. Gotta say this was a breeze to setup. I have also setup the Self Registration for the users as well | 16:22 |
| nowen | awesome - usually people ask way more questions during setup | 16:23 |
| Tony_ | works really well. | 16:23 |
| Tony_ | the documentation was very straight forward. | 16:23 |
| Tony_ | though it seemed that the lines in the JSP mentioned in the doc were not a one to one with the JSPs I have but I found them | 16:24 |
| nowen | hmm - yes - updates to code come faster than to the docs ;) | 16:24 |
| nowen | we should probably just removed the line numbers | 16:25 |
| Tony_ | but it wasn't too bad | 16:25 |
| Tony_ | ok thank you for the help on the 2 Factor. One more question..... | 16:26 |
| nowen | yep | 16:26 |
| Tony_ | Is Wikid PCI certified? or partnered? | 16:26 |
| nowen | nothing official, but we have tons of PCI customers. | 16:26 |
| nowen | I don't think there is an official vendor approved program | 16:27 |
| nowen | do you need an invoice or quote? or will you buy online? | 16:27 |
| Tony_ | We actually already have a quote in hand we are getting our docs together to purchase. | 16:28 |
| nowen | ok | 16:28 |
| Tony_ | Are there any references for the PCI customers? | 16:28 |
| nowen | you want to talk to someone that has been through PCI with WiKID? | 16:29 |
| Tony_ | that would be great | 16:29 |
| nowen | shouldn't be an issue | 16:29 |
| Tony_ | how can I get the contact info? | 16:32 |
| nowen | email me at nowen @ wikidsystems.com | 16:35 |
| *** Tony_ has quit (Quit: Page closed) | 16:41 | |
| *** prowlah has quit (Ping timeout: 244 seconds) | 16:51 | |
| *** prowlah (~prowlah@unaffiliated/prowlah) has joined #wikid | 16:53 | |
| *** nowen has quit (Quit: Leaving.) | 21:54 | |
| *** relix_ (266f9a61@gateway/web/freenode/ip.38.111.154.97) has joined #wikid | 23:03 | |
| relix_ | Hello | 23:03 |
| relix_ | Can Wikid be used - with either an LDAP or RADIUS server - to produce an authentication requirement of username & password+OTP? | 23:04 |
| relix_ | Instead of just username & OTP? | 23:04 |
| asofrank | anything is possible I suppose | 23:33 |
| asofrank | nick isnt here right now, he could probably answer that for you | 23:34 |
| asofrank | you might try the contact form on the site | 23:34 |
| relix_ | ok, thx | 23:37 |
| *** relix_ has quit (Quit: Page closed) | 23:38 | |
Generated by irclog2html.py 2.11.0 by Marius Gedminas - find it at mg.pov.lt!