Getting Started Guide
Multi-Factor Authentication (M...

Using MFA to Log in to the Kron PAM Web GUI

MFA can be used to log in to Kron PAM.

To activate the One-Time Password (OTP) for the Kron PAM GUI login, follow the steps below:

  1. Send users the QR Code and make all necessary configurations. Refer to Connecting Kron PAM and the Kron PAM Mobile Client Application
  2. Configure MFA for the Admins by creating a QR Code and sending it to the Admins so that they can sync their Kron PAM and the Kron PAM Mobile Client Application. After enabling MFA, the Admins should use it to log in to the system. Admins will not be able to log in if MFA has not been configured.

If the Admin gets locked out, please contact the Kron Support Team. One of the User groups needs to be OTP enabled. Refer to Enabling One-Time Password (OTP) If there is no User group enabled for OTP, MFA will not work. If one or more user groups are enabled for OTP, MFA will be enabled for all the users for Kron PAM logins.

  • Navigate to Administration > System Configuration Manager
  • Click the Add button to open a pop-up screen. Then click Add New System Parameter
  • Set the required parameters:

sc.portal.otp.enabled=true

One-time password enabled for GUI Login

otp.rest.url=http://127.0.0.1

If SSL is enabled in the network, the URL should be https://127.0.0.1

  • Log out and log in again. After the login screen, Kron PAM asks for an offline token.
  • Open the Kron PAM Mobile client Application, select Offline Token, and enter the token value to log in.

PREVIOUS
Enabling One-Time Password (OTP)
NEXT
Using MFA for SSH Connections
Docs powered by Archbee