Jump to content

This is the support site for Andrews & Arnold Ltd, a UK Internet provider. Information on these pages is generally for our customers but may be useful to others, enjoy!

FireBrick OTP: Difference between revisions

FireBrick OTP (view source)

Revision as of 12:07, 17 February 2011

101 bytes added ,  17 February 2011
→‎Configuring OTP devices against FireBrick Users
You can use the OTP instead of a password, eg:
<syntaxhighlight>
<user name="bob" timeout="PT1H" otp="Bobs keyring" comment="OTP token"/>
</syntaxhighlight>
 
===Password and OTP example===
<syntaxhighlight>
<user name="bob" timeout="PT1H" otp="Bobs keyring" comment="OTP token" password="secret"/>
</syntaxhighlight>
With this, bob will need to log in to the FireBrick using the password of <opt><password> - is the opt value followed by his password.
We can then set a user that is not restricted by IP address, which means that you can log in to the FireBrick from anywhere as long as you use the OTP as well -so security is tighter as both a password and the OTP are required. eg
<syntaxhighlight>
<user name="bob" timeoutcomment="PT1H"access otp="Bobswith keyring"just comment="OTPa tokenpassword from the LAN" password="secret" access="192.0.2.0/28"/>
<user name="bob2" otp="Bobs keyring" password="secret" comment="Access from anywhere with OTP and password"/>
</syntaxhighlight>
AA-Andrew
autoreview, Bureaucrats, editor, Interface administrators, reviewer, Administrators
12,291

edits

Retrieved from ‘http://support.aa.net.uk/Special:MobileDiff/696