Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
ASG-RD and Pleasant Password Server 2-Factor Error
#1
Hello

We have integrated ASG-RD with our Pleasant Password Server running with 2-Factor authentication.
As long as the 2-Factor option selected in Pleasant is Authenticator Application (Google, Authy) it works fine. But if we enable 2-Factor via Yubikey, we receive an error in ASG-RD when providing the PIN:

Error
Reading data from 'Pleasant Password Server' failed - no valid Auth Token received.

We have no problem logging into the Pleasant Password Web page with the YubiKey's.

Are there any logfiles that can provide a better clue as to what is wrong ?
Does anybody have an idea, as to what could be wrong here ?

Versions:
ASG-RD: 12.0.6420.1 (ASG-RD 2019 - Patch4)
Pleasant Password Server: 7.9.24.0
Reply
#2
I have no idea - never tried 2FA with Yubikey - is Yubikey also generating a PIN? I think "no valid Auth token received" is that what we get as error from Thycotic...
Regards/Gruss
Oliver
Reply
#3
I will check if there is any more data that is returned that we might can add to the log...
Regards/Gruss
Oliver
Reply
#4
The Yubikey outputs a 45 character pin. Its after this PIN input I receive the Error of No valid Auth Token.
Reply
#5
We will try to evaluate next week - need a new testing license first :-)
Regards/Gruss
Oliver
Reply
#6
I think I found already the reason - as you said 45chars I checked the Password-Dialog - and it seems to be that the password field is limited to 32 - can you please check if the PIN is truncated if you enter it to the password dialog? If yes it will be easy to fix :-)
Regards/Gruss
Oliver
Reply
#7
You are correct I can only type 32 characters in the pin dialog box. And the Yubikey outputs 45 chareters as a PIN.
Reply
#8
Yubikey PIN Input is working in ASG-RD 2019 Patch 5 (12.0.6469.1) and Pleasant Password Server: 7.9.24.0
Reply
#9
Ok - thanks for your feedback
Regards/Gruss
Oliver
Reply




Users browsing this thread: 1 Guest(s)