This question was originally posted on DCIM Support by Krista Flynn on 2018-03-21
I previously asked the question if the DCE/DCO/Struxureware Portal could be CAC enabled and was told that they could not be CAC enabled.. However, I received some information from our PKI team which indicated that there was some Enterprise Management Suite software for the DCE/DCO/Portal that can be CAC/2 Factor Enabled and wanted to verify whether this information is correct or not. Is there some Enterprise Management software that allows this? Also, wanted to verify that the Netbotz, sensors, and PDU's can not be CAC/2 factor enabled.
This answer was originally posted on DCIM Support by Steven Marchetti on 2018-03-21
For NetBotz and DCE, I know of nothing that can specifically used for 2 factor authentication...at least nothing that is officially supported or that we recommend as an integration with these products. I know there is an enhancement request for such a feature in the system for DCE and I'll add your post to that.
I don't know about DCO or portal and will defer to someone that knows more in that area but I haven't heard of anything there either.
This comment was originally posted on DCIM Support by Justen.Dimaio on 2018-03-21
I am also interested in this topic, I have a customer who is looking to see if DCO will support SAML or dual authentication (two-factor) for the DCO customer portal. Currently they are using DUO (www.duo.com/docs/duoweb) and if SAML is not supported, they would like to know if it would be possible to access the source code to leverage DUO.
Jef Faridi do you know if this is possible or if there is an enhancement request for this in place already?
This comment was originally posted on DCIM Support by Robert Quadrini on 2018-03-22
As a follow up to this request. Our customer is stating that if two-factor authentication is not available, administrator accounts should only be able to access DCO (web or client) while on their corporate network. As of now it appears that administrator accounts can be used to access DCO from anywhere once tenant portal is configured. Is there a way to further restrict access using our software?dcportal.vsd
This comment was originally posted on DCIM Support by Jef Faridi on 2018-03-22
If I understand correctly, DC server is placed behind the firewall(s), so I think the firewall(s)/rules may decide who can access a certain server (such as DCO).
This answer was originally posted on DCIM Support by Jef Faridi on 2018-03-22
Hi Krista & Justen,
Two factor authentication is not supported. Currently the supported user authentication in DCO can be by:
Data Center Operation server
Authentication server Type: Active directory, Data Center Expert, LDAP
It seems we have already registered a feature request for two factor authentication in DCO, I will add you (and this post) to that feature request case as well.
Discuss challenges and get support in energy and automation with 30,000+ experts and peers.
Over 10,000+ support articles are available to help you find answers to your product and business challenges.
Find peer based solutions to your questions. Provide answers for fellow community members!