Fórum

  1. Início
  2. Portal
  3. Two Factor Auth

Two Factor Auth

thumbnail
Jason Poley, modificado 17 Anos atrás.

Two Factor Auth

Junior Member Postagens: 88 Data de Entrada: 21/10/04 Postagens Recentes
Are there any plans to implement two factor authentication for liferay?<br />Internal or External..<br /><br />just wondering<br /><br />-Jason
thumbnail
Joseph Shum, modificado 17 Anos atrás.

Two Factor Auth

Expert Postagens: 336 Data de Entrada: 17/05/06 Postagens Recentes
<br />Are there any plans to implement two factor authentication for liferay?<br />Internal or External..<br /><br />just wondering<br /><br />-Jason<br />
<br /><br />not that i know of jpoley. although couldn&#39;t that be implemented by customizing the login process. <br />add a field in the login form for say a dynamically changing secureId number and adding an Authenticator to the auth pipeline to check the id number? <br />I haven&#39;t done this before. but let me know if this is along the lines of what you were thinking.<br /><br />joe
thumbnail
Jason Poley, modificado 17 Anos atrás.

Two Factor Auth

Junior Member Postagens: 88 Data de Entrada: 21/10/04 Postagens Recentes
<br />not that i know of jpoley. although couldn&#39;t that be implemented by customizing the login process. <br />add a field in the login form for say a dynamically changing secureId number and adding an Authenticator to the auth pipeline to check the id number? <br />I haven&#39;t done this before. but let me know if this is along the lines of what you were thinking.<br /><br />joe<br />
<br /><br /><br /><br />I was thinking any form of 2 factor auth, possibly secureID, or PassMark www.passmarksecurity.com<br /><br />I am sure that something within liferay could be extended, but I think this is likely a very common (or will be soon) question, and that many people would want / need / use it.... <br /><br />as the banking industry has taken a leagal approach to acutally requiring it... <br /><br /><a href="http://www.out-law.com/page-5166" target="_blank">http://www.out-law.com/page-5166</a><br /><br /><br />not that 2 factor auth solves it all....<br /><br />here is some good insight from &quot;THE&quot; man on security...<br /><a href="http://www.schneier.com/essay-083.html" target="_blank">http://www.schneier.com/essay-083.html</a><br /><a href="http://www.schneier.com/blog/archives/2005/04/more_on_twofact.html" target="_blank">http://www.schneier.com/blog/archives/2005...on_twofact.html</a><br /><br />hope this info helps... <br /><br /><br /><br /><br /><br /><br />
Michael Schwartz, modificado 11 Anos atrás.

RE: Two Factor Auth

New Member Postagens: 3 Data de Entrada: 02/04/13 Postagens Recentes
With the oxRay authentication plugin to LifeRay, you can get strong authentication (2factor, two-step authentication, out-of-band, biometric... for example). oxRay is open source (MIT license). and implements the OpenID Connect profile of Oauth2. So you would need to find an authentication provider that supports OpenID Connect for your domain, or launch your own strong authentication service using an "OpenID Provider" like oxAuth.

Here is a short video of Gluu Founder Mike Schwartz with two different types of mobile authentication http://goo.gl/YnyJN

If you would like to find out more, you should check the OX Wiki at http://ox.gluu.org