Filter by

KB_160117: How to change the IP address of the IDENTIKEY (Virtual) Appliance

How to

There are times when you might need to change the IP address of an IDENTIKEY (Virtual) Appliance. This KB article outlines two different methods of accomplishing this: one via the IDENTIKEY Appliance Configuration GUI, and the other via direct access to the Rescue tool of the IDENTIKEY Appliance itself.

KB_160116: Database Design Considerations for VACMAN Controller Implementations

Article

This paper outlines general recommendations and best practices related to the design of a VACMAN Controller database for client implementations. The intent is to provide a starting point that customers may use to support standard VASCO implementations and as a foundation for further customization to achieve customer data storage requirements.

KB_180037: Unable to save the Message Delivery Component (MDC) profile in Linux mdcconfiggui – Certificate file not found

Bug

When configuring an MDC profile on Linux, you can get an error “Certificate file could not be found”. Keywords: MDC, mdcconfiggui, Linux

KB_180036: Unable to configure IDENTIKEY Authentication Server with Thales nShield HSM: CrossModule

Bug

When configuring IDENTIKEY Authentication Server with Thales nShield HSM, the IDENTIKEY configuration wizard fails with the error “Error from command [GetKeyInfoEx] : [CrossModule]”

KB_170045: How To configure Online Time Synchronization for DIGIPASS for Mobile (DP4Mobile)

How to

How to configure Online time synchronization with the VASCO time server for DIGIPASS for Mobile.

KB_170044: How To release attributes from Active Directory when authenticating with IDENTIKEY Federation Server (IFS) and IDENTIKEY Authentication Server (IAS)

FAQ

A customer would like for example the email attribute released from Active Directory after a successful authentication from IFS to IAS. In this article we will describe how to configure this, based on the example of the IFS built-in userpage with Radius authentication to IAS.

KB_160115: How To Show the Expiration Dates of IDENTIKEY Authentication Server (IAS) User Accounts when IAS is using an ODBC data store

FAQ

User accounts in IDENTIKEY Authentication Server (IAS) can be set to expire on a specific date by setting the “Expires” feature on the user account. This field is typically used for temporary users such as contractors or external auditors. IAS does not automatically delete "expired" users.

KB_160114: Error in IDENTIKEY Authentication Server (IAS) during authentication: 'Policy specifies 'Reject' in its 'Privileged Users' setting and the authenticating user has administrative privileges. This logon will be rejected.'

FAQ

When an IAS administrator authenticates via an IAS policy which is set to reject local admins you will see this Error Message: 'Policy specifies 'Reject' in its 'Privileged Users' setting and the authenticating user has administrative privileges. This logon will be rejected.'

KB_160113: How To configure Active Directory SSL Back-End Authentication in IDENTIKEY Authentication Server (IAS) on Linux

FAQ

When using Microsoft Active Directory with IAS for back-end authentication, the back-end server should be configured accordingly. As such, if Active Directory is configured to communicate via SSL, then IDENTIKEY Authentication Server must also be configured to use SSL with Active Directory.

KB_160112: Error Message in IDENTIKEY Authentication Server during authentication: 'The user domain does not match the accepted domain.'

FAQ

When an authentication fails with error message “The user domain does not match the accepted domain”, this means that the accepted domain feature in IDENTIKEY Authentication Server (IAS) is configured for a domain that is different from the domain of the user who is authenticating.