Difference between revisions of "Test"

From PARS
Jump to navigationJump to search
Line 6: Line 6:
 
There is a setting called PINS - this must be set to On
 
There is a setting called PINS - this must be set to On
 
There is a setting called PIN_Exclude_IPs - this can include single IP addresses or IP address subnet masks. Each separated by a semi colon, and there must not a line break. You can enter *log* as the first item in the list to force PARS to write information back to the Application Log on the PARS server.
 
There is a setting called PIN_Exclude_IPs - this can include single IP addresses or IP address subnet masks. Each separated by a semi colon, and there must not a line break. You can enter *log* as the first item in the list to force PARS to write information back to the Application Log on the PARS server.
There is a setting called PINSBYTOTP - wtf does this do?
+
There is a setting called PINSBYTOTP - this allows users to use authentication apps instead of email/sms pins. The cog button on the login page is used to receive the key.

Revision as of 10:50, 20 July 2018

PINs can be enabled in PARS for two factor authentication; the user must login using their SIMS or Active Directory details, then also enter a PIN which they will receive by email and SMS (where available).

PINs can be disabled for login attempts from given IP address ranges. This allows you to use single factor authentication for logins within the school network and two factor authentication for all other logins.

PINs are enabled via the web.config file: There is a setting called PINS - this must be set to On There is a setting called PIN_Exclude_IPs - this can include single IP addresses or IP address subnet masks. Each separated by a semi colon, and there must not a line break. You can enter *log* as the first item in the list to force PARS to write information back to the Application Log on the PARS server. There is a setting called PINSBYTOTP - this allows users to use authentication apps instead of email/sms pins. The cog button on the login page is used to receive the key.