BOE and Two Factor Authentication

system · July 24, 2007, 10:03pm

Has anyone attempted two factor authentication with Business Objects? Would you use the Trusted Authentication for something like that?

We are looking to run in an extranet environment and the issue of high security continues to surface. We are thnking about tools such as RSA SecureID or BioPassword. Any help appreciated.

Thanks,
David

David White (BOB member since 2004-06-01)

system · July 28, 2007, 3:27pm

Hi there

What is two-factor authentication?
in the admin manual there is some stuff on trusted authentication (ch.14 I think - we are considering it for access from the company portal via our extranet.

Many thanks

philipo (BOB member since 2005-07-22)

system · September 9, 2015, 4:42pm

Hello David,
We are also trying to implement 2 factor authentication in our BI 4.1 environment, were you able to implement the same?? If yes can you please share more information regarding the same

Thanks
Phani

phani (BOB member since 2003-11-24)

system · September 11, 2015, 1:45pm

The only means of a 2 factor authentication would be using a 3rd party tool,service to let you in as an authenticated user of your corporate environment isnt it ? Knowing that BOBJ doesnt directly support such 2 factor mechanisms, you’ll have to front end that with the “authenticator” tool. If thats your first entry point , Trusted auth would be the way to go with BOBJ.

Depending on your environment, your entry point may need to pass HTTP_HEADER or REMOTE_USER header info of the user thats already in the BOBJ system. Wont recommend using a QUERY_STRING as it would defeat the purpose of such high security.

Alternatively, you can perhaps build and maintain custom components using REST SDK that help getting the user into the BOBJ system after the 3rd part tool completes the user authentication.

Shobhit_Acharya (BOB member since 2005-08-11)

system · October 8, 2015, 4:24am

Thanks for the Reply Shobhit, that was very useful. Can you please let me know the third party tools used to implement 2FA.

Thanks
Phani

phani (BOB member since 2003-11-24)

system · February 12, 2018, 5:21pm

The issue we have is the same as setting up SSO. When you do use 3rd party it involves a trust that only hands off the user ID or account but not the password. This means DBPASS doesn’t get updated upon login and pass-through connections start failing.
So, has anyone found a way to use SSO or MFA and still be able to update DBPASS in BIP?

Jon

pcgeekus (BOB member since 2003-10-16)