01-07-2014 08:08 AM - edited 03-19-2019 07:43 AM
Has anyone setup any form of two factor authentication for logging into UC servers (Callmanager/Unity) for administrators using RSA SecurID's or another form of authentication? We currently use our LDAP account or setup a Application User account but our Security group would like to add another layer of authentication. Any suggestions?
01-07-2014 08:26 AM
Hello gzulko,
For the Web administration page you could have an initial proxy url for initial authentication (CISCO or 3rd party), then once you reach the CUC page you can use your LDAP credentials.
Regards,
+david+
01-07-2014 08:37 AM
What is stopping the admin user from just putting in the the IP/URL of the UC server and bypassing the proxy?
01-07-2014 08:41 AM
Hi gzulko,
Nothing, thats why the URL redirecting should always occur to the proxy first in order to provide the credentials for your first layer of authentication.
Regards,
+david+
01-07-2014 09:03 AM
Thanks for your help David. This is not my area of expertise, so if I put in the UC servers IP/URL the proxy server will intercept the request and block it from reaching the UC server? Our Security group wants two factor enforced so I cannot bypass the second method of authentication.
Gary
09-16-2016 04:36 AM
Gary,
Were you able to setup the two factor authentication for your servers?
09-19-2016 05:36 AM
No, we never did.
09-26-2016 07:50 AM
Okay, Thanks.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide