Once the user has the App configured and showing the 6 digit code, the user can enter the Code in the wizard window and click Next. To configure the App, the users must add an email address and the unique Key from the Zimbra Web Client.Īll done! Now the app is configured and will show a 6-digit code that changes after 15 seconds.įile:Zcs87-2fa-014.png Finishing the configuration in the Web Client However, keep in mind the next Bug where it is being discussed to add the option to support barcodes. Zimbra Collaboration 8.7 supports only manual entry for now. The app will ask if you want to configure a Manual entry or Scan a barcode. Once the app is installed, open it, and click Begin Setup. In the App Store or Play Store, search by Google authenticator, then click Install. In this example, I will use Google authenticator, but please visit our Wiki where you can find other options. How to Install and Configure an OTP smartphone app ![]() Once the user has installed the App, the 2FA wizard will show a unique key that the user must enter in the Smartphone OTP App. The Two Factor authentication wizard will show a Wiki link with the OTP Apps Zimbra recommends to use. The next step retrieves the other component the user must have, in this case an app in the smartphone. Once the user wrote the password, click on Next. Next step will be introduce the user current password, if you remember the theory of 2FA, this will be “the component the user knows”. The first step shows a brief description about two-step authentication. If the user clicks on the Setup two-step authentication link, the configuration process will begin. Once the Admin has been enabled and configured the 2FA, users will see a new option under Preferences > Accounts > Account Security, called Setup two-step authentication How to enable two-factor authentication feature (User Web Client) You can generate exceptions codes for them. Enable application passcodes: for legacy applications that don’t support 2FA.Number of one-time codes to generate (per each user).Require two-step authentication: all users will need to configure the 2FA.User will have to setup two-factor authentication using Web Client after enable step. Enable two-factor authentication: enable or disable the two-factor authentication feature.To enable it in the Admin Console: Home > Configure > Class of service > yourCOSname > Advanced > Two Factor Authentication Therefore, you can enable this feature just for the most critical Mailboxes in the environment, to all users, etc. This allows precise control over the users Security. The two-factor authentication feature must be enabled in the Admin Console, and it can be enabled at User or Class-of-service level. If you need to install the new license, you should do the following after installing the license to get the two-factor authentication working: Please note the related bugs posted below. ![]() If you want this feature and currently do not have it as a part of your license, please contact your regional sales manager, so you can get a new license issued, with the feature enabled. To see if your Zimbra server has the two-factor authentication enabled, you can check from the CLI. Two-factor authentication Requires A License Key In particular, pre-8.7 mailbox servers are not compatible with 2FA.Īccordingly, it is recommended that 2FA is not enabled until all mailbox servers have been upgraded to 8.7. Note: Bug 105056 noted a problem that can occur during a rolling upgrade if two factor authentication is enabled before all mailbox servers have been upgraded to 8.7. If, in an authentication attempt, at least one of the components is missing or incorrect, the user’s identity is not established with sufficient certainty and access to the user Zimbra Mailbox being protected by two-factor authentication remains blocked. The use of two-factor authentication to prove your users’ identity is based on the premise that an unauthorized actor is unlikely to be able to supply both factors required for access. These components may be something that the user knows (like a password, UserID, etc) and something that the user possesses (a good example can be a smartphone, or USB-key, etc.) Two-factor authentication is a technology that provides identification of users with the combination of two different components. This is certified documentation and is protected for editing by Zimbra Employees & Moderators only.Ĭoming with Zimbra Collaboration 8.7 (only in Network Edition) is an exciting new feature: two-factor authentication (also known as 2FA).
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |