Passcode security

From TempusServa wiki
Revision as of 19:12, 9 November 2017 by old>Admin
Jump to navigation Jump to search

This article will be published 13 november 2017

Preparation

To enable 2 factor authentication for users you will need to prepare the following:

  • List of IP's that should not require 2 factor authentication
  • An messaging URL for sending SMS's
  • Access to cellphone numbers for all employees


Setup

First you will setup the system to run in testmode, so that all messages are sent for you. After checking everything works, disable the testmode.

Change server configurations

  • Set "smsConnectUrl" to your connection URL
  • Check that "smsParamMessage" fits that of your provider
  • Check that "smsParamNumber" fits that of your provider

Stop the application server

Go to the application folder and dive into: <application>\WEB-INF\web.xml

Uncomment the section containg the servlet mapping

   <filter>
       <filter-name>TwoFactorAuthentication</filter-name>
       <filter-class>dk.tempusserva.passcode.SmsVerificationFilter</filter-class>
   </filter>
   <filter-mapping>
       <filter-name>TwoFactorAuthentication</filter-name>
       <url-pattern>/main</url-pattern>
   </filter-mapping>

Start the application server


Test and go live

Change server configurations

  • Set "smsTestMode" to true