Creating a Connection Between Kron PAM and the Kron PAM Mobile Client
The Kron PAM Mobile Client is available on the Android and Apple app stores. Users need to download it first and follow these steps to synchronize Kron PAM and the Mobile Client:
- Open the Kron PAM Mobile Client.
- Select Offline Token > Scan QR Code.
- Use the Kron PAM Mobile Client to scan the QR code included in the email sent by an admin.
- By scanning the QR code, the MFA key matches up the Kron PAM Mobile Client and the Kron PAM Web GUI.
OTP can also be used in MFA Clients such as Google Authenticator or Microsoft Authenticator, apart from the Kron PAM Mobile Client. By default, only the Kron PAM Mobile Client is allowed, but can be activated in other MFA client applications by following the steps below.
To enable Multi-Factor Authentication (MFA) for MFA Client Applications:
- Navigate to Administration > System Configuration Manager.
- Set the required parameters: iga.2fa.use.external.mobile.app=true (Default value is false)
OTP can also be used in MFA Clients such as Google Authenticator or Microsoft Authenticator, apart from the Kron PAM Mobile Client. By default, only the Kron PAM Mobile Client is allowed, but can be activated in other MFA client applications by following the steps below.
To enable Multi-Factor Authentication (MFA) for MFA Client Applications:
- Navigate to Administration > System Configuration Manager.
- Set the required parameters:
- iga.2fa.use.external.mobile.app=true (Default value is false)
When the parameter is set to true, MFA Client applications will be able to read barcodes. The generated OTP value will be synchronized with the Kron PAM Mobile Client.