* * * Are you already looking forward to the NEW 2016? * * *
Have you planned security improvements for your corporate applications running on AS JAVA during 2016?
Do you know that SAP offers a simple solution for Two-Factor Authentication (2FA) based on Time-Based One-Time Passwords (TOTP)?
Time-Based One-Time Passwords (TOTP) are passcodes generated using an algorithm that computes aone-time password from a shared secret key and the current time (seeRFC 6238). SAP Single Sign-On product offers a two-factor authentication solution based onTOTP. Such authentication is considered more secure because TOTP passcodes are time-based (valid only 30 seconds), they could be used for only one logon attempt and they are issued by two means of identification: the user possesses something and the user knows something – for example the user possesses a mobile device, where the passcode generator is installed, and knows the password that unlocks the device. This makes the TOTP a perfect security solution for protecting a system or an application with strong authentication mechanism. SAP offers also a passcode generator mobile application called “SAP Authenticator” (available at the moment for iOS and Android devices) that generates 6-digit or 8-digit passcodes but you can use also passcode generators from other vendors if they are compatible with the standard RFC6238.
In order to help you with your security tasks in the new year, I created a blog with the simple configuration steps required to enable 2FA based on TOTP when you use the SAP Signe Sign-On solution: Simple Configuration Example for Implementing Two-Factor Authentication (2FA)
Note: SAP Single Sign-On product offers also solutions for 2FA alternative to TOTP like One-time Password (OTP) sent via SMS or e-mail, or integration with RADIUS server (RSA, other.) but the blog, mentioned by me above, describes only the steps to configure 2FA based on TOTP .
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
I wish you ALL a Happy Holiday Season together with your family and friends and a Prosperous New Year 2016!
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *