| *** coolacid has quit (Ping timeout: 260 seconds) | 12:41 | |
| *** coolacid (~CoolAcid@unaffiliated/coolacid) has joined #wikid | 12:42 | |
| *** nowen (~nowen@99-174-93-102.lightspeed.tukrga.sbcglobal.net) has joined #wikid | 13:07 | |
| *** Hildrum (171999a9@gateway/web/freenode/ip.23.25.153.169) has joined #wikid | 15:43 | |
| Hildrum | can you tell me how long the 1 time password is vaild for? | 15:44 |
|---|---|---|
| nowen | Hildrum: that is configurable per domain. the default is 60 secs, but it can be anythign | 15:44 |
| nowen | does it not say on the token? | 15:44 |
| Hildrum | i assume it changes every 60 seconds | 15:45 |
| nowen | sort of. it doesn't just 'change' you request a new one. it is valid for whatever the server admin has setup | 15:45 |
| Hildrum | so would it give me true 2 factor auth like rsa does | 15:46 |
| nowen | yes, the two factors are knowledge of the PIN and possession of the (private key embedded in) the software token | 15:47 |
| nowen | we get a lot of people moving from RSA | 15:47 |
| Hildrum | is it PCI complient | 15:47 |
| nowen | yes, we have a ton of PCI customers | 15:47 |
| Hildrum | ok the onetime password is static until some one makes the change. Admin etc.... | 15:48 |
| nowen | nope | 15:48 |
| Hildrum | its a generated every session and it random | 15:49 |
| nowen | when the user wants to login, they open the token and enter the PIN. it is encrypted and sent to the sever | 15:49 |
| nowen | server | 15:49 |
| nowen | if the PIN is correct, the account valid and the encryption valid, the OTP is generated, encrypted and returned | 15:49 |
| Hildrum | ok | 15:50 |
| nowen | then the user logs in with the OTP and their username | 15:50 |
| Hildrum | thanks | 15:50 |
| nowen | download the server and play with uit | 15:50 |
| Hildrum | can i create the server in a VM | 15:51 |
| nowen | sure | 15:51 |
| nowen | you can use our ISO. just boot like centos/rhel 32 bit | 15:51 |
| nowen | how did you find out about us? | 15:52 |
| Hildrum | 15:52 | |
| Hildrum | any mobile phone support | 15:53 |
| Hildrum | for the client | 15:53 |
| nowen | yes, iphone, android | 15:53 |
| nowen | maybe windows mobile still | 15:53 |
| nowen | blackberry I'm not sure. no one has asked recently | 15:53 |
| nowen | shouldn't be too hard to update | 15:53 |
| Hildrum | so you install the client on your phone. select the domain | 15:54 |
| nowen | and enter pin | 15:54 |
| Hildrum | yes | 15:54 |
| Hildrum | whats the cost for 25 users | 15:54 |
| Hildrum | why would i not wnat to just use watchguards mobile ID 2 factor auth? sell me | 15:55 |
| nowen | http://www.wikidsystems.com//pricing | 15:55 |
| nowen | is this it: When a user logs in to the WatchGuard SSL Web portal, a Java applet or ActiveX component launches and prompts the user to enter a password or PIN. | 15:56 |
| nowen | or does it use SMS? | 15:57 |
| Hildrum | it has a app thats all i know | 15:58 |
| nowen | I don't see it in the play store | 15:58 |
| Hildrum | ok | 15:59 |
| nowen | it looks like it uses sms, which is not securable | 15:59 |
| nowen | you might as well email an OTP | 15:59 |
| Hildrum | do users have to create a seed of any sort? | 16:00 |
| nowen | how about this for a reason: I can't find any technical/security information about via google! | 16:00 |
| Hildrum | lol | 16:00 |
| *** josmith (48c40b51@gateway/web/freenode/ip.72.196.11.81) has joined #wikid | 16:00 | |
| nowen | the keys are generated on the device and server and exchanged. after this exchange, the users get a registration code. That code needs to be associated with their username on the server | 16:00 |
| nowen | it can be done manually or programmatically by them using some scripts we provide | 16:01 |
| josmith | @nowen, trying to purchase a 10 user license, but finance doesnt want to use google wallet, is there a phone number they can call | 16:01 |
| Hildrum | can you send me a client list | 16:01 |
| nowen | Hildrum: will you agree to be a reference? | 16:01 |
| nowen | josmith: I can send you an invoice if you like | 16:01 |
| Hildrum | cant promise | 16:01 |
| nowen | yeah, not many companies will endorse products | 16:02 |
| nowen | Hildrum: talk to joevano | 16:02 |
| josmith | what email address should i have them send to you? | 16:02 |
| nowen | josmith: we don't process cards over the phone, sorry | 16:02 |
| nowen | nowen@wikidsystems.com | 16:02 |
| nowen | I'll look for it | 16:02 |
| Hildrum | ericnhildrum@gmail.com | 16:03 |
| josmith | understood and thanks | 16:03 |
| nowen | josmith: we will be changing as google checkout is going away | 16:03 |
| josmith | you should be getting an email shortly | 16:03 |
| josmith | thanks again | 16:03 |
| nowen | josmith: is the server setup? | 16:04 |
| Hildrum | thanks | 16:04 |
| nowen | Hildrum: no problem. Get the server set up and working. we will do all the pre-sales engineering you need, then you pay when it is all working. | 16:05 |
| *** Hildrum has quit (Quit: Page closed) | 16:05 | |
| *** josmith has quit (Ping timeout: 250 seconds) | 16:08 | |
| *** nowen has quit (Quit: Leaving.) | 22:00 | |
| *** joevano has quit (*.net *.split) | 23:47 | |
| *** bdashrad has quit (*.net *.split) | 23:47 | |
| *** coolacid has quit (*.net *.split) | 23:47 | |
| *** coolacid (~CoolAcid@unaffiliated/coolacid) has joined #wikid | 23:54 | |
| *** joevano (~joevano@bzflag/developer/JoeVano) has joined #wikid | 23:54 | |
| *** bdashrad (~bdashrad@ocean.bdashrad.com) has joined #wikid | 23:54 | |
Generated by irclog2html.py 2.11.0 by Marius Gedminas - find it at mg.pov.lt!