Kron PAM can be used for Two-Factor Authorization, which includes location confirmation-based authorization (based on Geofencing). 

The system administrator can add location confirmation-based authorization to the black policy key on the Kron PAM server. In case the user runs the command that has been defined in the black policy key and if the black policy key has been configured with the location confirmation, the user still can run the command if his/her location matches those in the definition of the black key.

To confirm the user’s location, the user can use the Geo-Fencing tab on the Kron PAM Mobile Client Application. This allows users to be authorized only when they are in the pre-selected location.

 In case the user needs authorization through location confirmation, follow the steps below:

Learn how Kron PAM's Two-Factor Authorization using Geo-Fencing mode enhances security by ensuring users can only access the system from a specific location. This document provides detailed instructions on configuring and testing the Two-Factor Authentica

Protecting Tokens with MFA

Two-Factor Authorization

Approval Management

3.8.0 Logging in with LDAP, RADIUS, or TACACS+ Credentials

Logging in to Kron PAM

Registering as a New User

Changing the Interface Language

Logging in with SSH Key

Connecting Kron PAM with SSH/Telnet Proxy

Logging in with Session User via SSH/Telnet Proxy

Logging in Manually via SSH/Telnet Proxy

Logging in with Globalusername via SSH/Telnet Proxy

Logging in with Assigned Credentials via SSH/Telnet Proxy

Connecting with Kron PAM SSH/Telnet Proxy via Web GUI

Connecting to Target Device with IP address for SSH Proxy

Connecting to Devices with Managerial Approval via SSH

Command Filtering for SSH/Telnet Proxy

Admin Message and Kill Session

Connecting to SSH Proxy via Kron PAM Desktop Client

Kron PAM Session Manager

Connecting to Remote Devices with RDP/VNC Proxy

Accessing Remote Application

Connecting to RDP/VNC Proxy via Kron PAM Desktop Client

Connecting to Devices with Managerial Approval via RDP

Temporarily Disabling RDP Key Logging

Changing RDP Session Settings

Connecting with RDP/VNC Proxy

Connecting to Kron PAM HTTP/HTTPS Proxy via Web Browser

Configuring Kron PAM Desktop Client

HTTP Proxy SSL/TLS Mode

Brute Force Protection

Auto-Login with Two Different Authentication URLs under the Same Web Server

HTTP Auto Login

HTTP/HTTPS Proxy

Connection Reservation

SQL Proxy

SFTP Proxy

Data Access Manager

Check Out Password

Password Vault Support in the Kron PAM Desktop Client

Connect to the Target Device over the Check Out Password Option

Account Permission Types

Password Reservation for Future Dates

Managing Account Groups

Password Vault

Multi-Factor Authentication (MFA)

Checking the Approval Status and Approving Manager of Pending Requests

Managing Approvals

Approval Management for End Users

TACACS+ Access Manager

Sample Configuration for Windows

Sample Configuration for Linux

RADIUS 802.1x Configuration

Kron PAM Secure Remote Access

End User Guide

Setting Up Kron PAM Desktop Client

Changing the Kron PAM Desktop Client Language and Tabbed View Usage

Configuring a Server

HTTP Proxy Configuration on the Kron PAM Desktop Client

Using HTTP Proxy in SSL/TLS Mode

Entering the Server Information for HTTP Proxy

Making RDP/SSH/HTTP Sessions via Kron PAM Desktop Client

Connect to Target Device Feature on the Kron PAM Desktop Client

Searching Devices in the Kron PAM Desktop Client

Categorizing Frequently Used Devices

Logging Out

Windows

Ubuntu

Mac OS

Starting Kron PAM Desktop Client from Command Line

Windows Authentication Feature on Kron PAM Desktop Client

SAML Integration on Kron PAM Desktop Client

Detailed Log Mode for Kron PAM Desktop Client

Desktop Client User Guide

Enabling and Disabling PIN Code

Logging in with Kron PAM User

Getting Started with Kron PAM Mobile Client Application

Offline Token

Exporting and Importing Token

Multi-Factor Authentication

Password Management

Mobile Client Application User Guide