Filter by

KB_160116: Database Design Considerations for VACMAN Controller Implementations

Article

This paper outlines general recommendations and best practices related to the design of a VACMAN Controller database for client implementations. The intent is to provide a starting point that customers may use to support standard VASCO implementations and as a foundation for further customization to achieve customer data storage requirements.

KB_180037: Unable to save the Message Delivery Component (MDC) profile in Linux mdcconfiggui – Certificate file not found

Bug

When configuring an MDC profile on Linux, you can get an error “Certificate file could not be found”. Keywords: MDC, mdcconfiggui, Linux

KB_180036: Unable to configure IDENTIKEY Authentication Server with Thales nShield HSM: CrossModule

Bug

When configuring IDENTIKEY Authentication Server with Thales nShield HSM, the IDENTIKEY configuration wizard fails with the error “Error from command [GetKeyInfoEx] : [CrossModule]”

KB_170045: How To configure Online Time Synchronization for DIGIPASS for Mobile (DP4Mobile)

How to

How to configure Online time synchronization with the VASCO time server for DIGIPASS for Mobile.

KB_170044: How To release attributes from Active Directory when authenticating with IDENTIKEY Federation Server (IFS) and IDENTIKEY Authentication Server (IAS)

FAQ

A customer would like for example the email attribute released from Active Directory after a successful authentication from IFS to IAS. In this article we will describe how to configure this, based on the example of the IFS built-in userpage with Radius authentication to IAS.

KB_160115: How To Show the Expiration Dates of IDENTIKEY Authentication Server (IAS) User Accounts when IAS is using an ODBC data store

FAQ

User accounts in IDENTIKEY Authentication Server (IAS) can be set to expire on a specific date by setting the “Expires” feature on the user account. This field is typically used for temporary users such as contractors or external auditors. IAS does not automatically delete "expired" users.

KB_160114: Error in IDENTIKEY Authentication Server (IAS) during authentication: 'Policy specifies 'Reject' in its 'Privileged Users' setting and the authenticating user has administrative privileges. This logon will be rejected.'

FAQ

When an IAS administrator authenticates via an IAS policy which is set to reject local admins you will see this Error Message: 'Policy specifies 'Reject' in its 'Privileged Users' setting and the authenticating user has administrative privileges. This logon will be rejected.'

KB_160113: How To configure Active Directory SSL Back-End Authentication in IDENTIKEY Authentication Server (IAS) on Linux

FAQ

When using Microsoft Active Directory with IAS for back-end authentication, the back-end server should be configured accordingly. As such, if Active Directory is configured to communicate via SSL, then IDENTIKEY Authentication Server must also be configured to use SSL with Active Directory.

KB_160112: Error Message in IDENTIKEY Authentication Server during authentication: 'The user domain does not match the accepted domain.'

FAQ

When an authentication fails with error message “The user domain does not match the accepted domain”, this means that the accepted domain feature in IDENTIKEY Authentication Server (IAS) is configured for a domain that is different from the domain of the user who is authenticating.

KB_140178: LDAP Backend authentication in IDENTIKEY Authentication Server with multiple subdomains when using the Global Catalog

How to

When you have multiple subdomains for backend authentication, you can use the global catalog option in IDENTIKEY Authentication Server(IAS) (When you have more than 2 subdomains, you must use the Global Catalog option. See KB article KB 140177 for details). Important to know is that the ldap bind user must be the same on the top level domain and all subdomains,...