| *** nowen (~nowen@2600:1003:b10d:ea5d:e426:ca49:d38d:f93e) has joined #wikid | 13:35 | |
| *** nowen1 (~nowen@46.sub-70-208-149.myvzw.com) has joined #wikid | 14:38 | |
| *** nowen has quit (Ping timeout: 240 seconds) | 14:39 | |
| *** nowen (~nowen@233.sub-70-208-161.myvzw.com) has joined #wikid | 16:06 | |
| *** nowen1 has quit (Ping timeout: 246 seconds) | 16:06 | |
| *** nowen has quit (Ping timeout: 256 seconds) | 16:10 | |
| *** nowen (~nowen@101.sub-70-208-153.myvzw.com) has joined #wikid | 16:53 | |
| Angel | Hi Nick. | 17:39 |
|---|---|---|
| nowen | hi angel | 17:51 |
| Angel | Question. How would I use a locked token with Preregistration. | 17:55 |
| nowen | in pre-registration, you create a list of users and pre-shared secrets. you upload the list to the wikid server under Users/Pre-register user. then you securely deliver each user their secret | 17:57 |
| nowen | they enter the secret and double enter their pin in the token | 17:58 |
| nowen | and they are registered! | 17:58 |
| nowen | if you look on the Pre-register users page, you will see the format for the list | 17:59 |
| Angel | We usually preregister the user. What then is different between the locked and the unlocked token. They seem to function the same. | 18:01 |
| nowen | the locked token takes some data from the computer during registration and hashes it such as the cpu id. | 18:01 |
| nowen | it sends this to the server during registration | 18:02 |
| nowen | each OTP request must also contain this has | 18:02 |
| nowen | h | 18:02 |
| nowen | that keeps users from moving the token | 18:02 |
| nowen | it also has the variable pin-pad | 18:02 |
| Angel | So would you recommend I deploy the locked token or the non locked for desktops in our corporate offices. | 18:09 |
| nowen | will these users only be logging in from those desktops? | 18:11 |
| nowen | if you are worried that they might try to load up the tokens on usb drives and work from home or if you are worried about malware stealing the tokens, then use the locked tokens. | 18:17 |
| nowen | if you want users to be able to move tokens around use the unlocked tokens | 18:18 |
| nowen | does that make sense, Angel? | 18:28 |
| Angel | Yes makes sense. | 18:31 |
| Angel | So functionality wise its no different than the unlocked for preregistering a user correct? | 18:32 |
| *** nowen has quit (Ping timeout: 246 seconds) | 18:34 | |
| *** nowen (~nowen@2600:1003:b105:1722:caf7:33ff:fef1:d35d) has joined #wikid | 18:50 | |
| Angel | So functionality wise its no different than the unlocked for preregistering a user correct? | 18:56 |
| *** nowen1 (~nowen@2600:1003:b126:2d93:e426:ca49:d38d:f93e) has joined #wikid | 18:57 | |
| *** nowen has quit (Ping timeout: 240 seconds) | 18:57 | |
| *** nowen1 is now known as nowen_also | 18:57 | |
| *** nowen_also is now known as nowen | 18:57 | |
| nowen | Angel: sorry - did I miss anything? | 18:58 |
| Angel | I was asking: So functionality wise its no different than the unlocked for preregistering a user correct? | 19:02 |
| nowen | that is correct | 19:02 |
| *** nowen has quit (Ping timeout: 240 seconds) | 20:48 | |
Generated by irclog2html.py 2.11.0 by Marius Gedminas - find it at mg.pov.lt!