(Feature available only in Premium Edition)
Password Manager Pro stores sensitive administrative passwords of enterprise resources in encrypted form in the database. Access to the data was earlier restricted by a single level of authentication - local authentication of PMP or the authentication of third party identity stores like ActiveDirectory or LDAP.
To introduce an extra level of security, PMP provides two factor authentication. Users will have to authenticate through two successive stages to access the PMP web-interface. While the first authentication will be through the usual native authentication or AD / LDAP, the second level of authentication could be one of the following:
Leveraging PhoneFacotor - a phone-based authentication service
A one-time, randomly generated unique password sent by PMP to the user by Email
Leveraging RSA SecurID authentication as the second level of authentication
This section explains how to enable two factor authentication in PMP.
Enabling two factor authentication in Password Manager Pro consists of two steps:
Setting up two factor authentication
Specifying the users for whom the two factor authentication is to be enforced
Note: Two factor authentication will take effect only if both the two steps are performed. Also, two factor authentication will be applicable only for the users for whom it is enforced through Step 2. All other users will be allowed to login to PMP through the usual way.
Before enabling the two factor authentication, decide on the technology you wish to use. At present PMP supports TFA through the following two options:
Unique password generated and sent through Email
Click the respective links to know more and proceed setting up the required TFA technology.
© 2009, ZOHO Corp. All Rights Reserved.