Welcome Guide for MP-1 Token for Microsoft Windows

Similar documents
Welcome Guide for KT Series Token

KT-4 Keychain Token Welcome Guide

SafeNet Authentication Manager

SafeNet MobilePASS+ for Android. User Guide

Protecting SugarCRM with SafeNet Authentication Manager

Token Guide for KT-4 for

Welcome Guide. SafeNet Authentication Service. MP-1 BlackBerry. SafeNet Authentication Service: Welcome Guide. MP-1 BlackBerry

Welcome Guide. SafeNet Authentication Service. RB-1 Tokens. SafeNet Authentication Service: Welcome Guide. RB-1 Tokens

Token Guide for USB MP. with. BlackShield ID

Yubico with Centrify for Mac - Deployment Guide

SANTA CLARA COUNTY CFET THIRD PARTY PARTNERS REMOTE ACCESS GUIDE

KT-1 Token. Reference Guide. CRYPTOCard Token Guide

ACCESSING INVESCO WINDOWS CITRIX RECEIVER CONFIGURATION

MobilePASS for BlackBerry OS 10

SAM 8.0 SP2 Deployment at AWS. Version 1.0

Implementation Guide for protecting Juniper SSL VPN with BlackShield ID

Hardware One-Time Password User Guide August 2018

Managed Access Gateway One-Time Password Hardware Tokens. User Guide

Document Signing Certificate Getting Started Guide

SecureLogin 8.7 Application Definition Wizard Administration Guide. December, 2018

Security Cooperation Information Portal

Hardware One-Time Password User Guide November 2017

BANKVIC APP FREQUENTLY ASKED QUESTIONS

ClientNet. Portal Admin Guide

Integration Guide. SafeNet Authentication Service. Protecting Microsoft Internet Security and Acceleration (ISA) Server 2006 with SAS

white paper SMS Authentication: 10 Things to Know Before You Buy

Entrust Cloud Enterprise. Enrollment Guide

INFORMATION TECHNOLOGY COMMITTEE ESCB-PKI PROJECT

SafeNet Authentication Client

ELECTRONIC SERVICES QUICK REFERENCE GUIDES

F-Secure Mobile Security

Implementation Guide for protecting. CheckPoint Firewall-1 / VPN-1. with. BlackShield ID

Integration Guide. SafeNet Authentication Manager. SAM using RADIUS Protocol with SonicWALL E-Class Secure Remote Access

Cisco 802.1x Wireless using PEAP Quick Reference Guide

Software Token Enrollment: SafeNet MobilePASS+ for Apple ios

3. Why should I use Samsung Pay instead of my physical cards?

Unified Communicator Advanced

SC-3 USB Token. QUICK Reference. Copyright 2007 CRYPTOCard Corporation All Rights Reserved

User Guide Advanced Authentication - Smartphone Applications. Version 5.6

SafeNet Authentication Service

Welcome to Adobe. This document will help you with initial account setup and password reset.

Implementation Guide for protecting. SonicWall Security Appliances. with. BlackShield ID

Wholesale Lockbox Quick Reference Guide: Administration

Integration Guide. SafeNet Authentication Manager. SAM using RADIUS Protocol with Check Point Security Gateway

Getting Started with Duo Security Two-Factor Authentication (2FA)

SafeNet Authentication Client

Integration Guide. SafeNet Authentication Service. Using SAS as an Identity Provider for Better MDM

Multi-factor authentication enrollment guide for Deloitte client or business partner user

ReACT New User Setup, Password Reset and Account Unlock Instructions

Consumer Banking User Guide. Getting Started

Online Services USER GUIDE. First Time Log In

Encrypted Users Guide. Revised 8/28/2017

Why was an extra step of choosing a Security Image added to the sign-in process?

PLEXUS PAY PORTAL YOUR HOW-TO GUIDE

User Guide for Client Remote Access. Version 1.2

The Smart Enterprise. InGuard Application. 24/7/365 Protection from Toll Fraud Attack

Integration Guide. SafeNet Authentication Client. Using SAC CBA with BitLocker

Check Point GO R75. User Guide. 14 November Classification: [Public]

SafeNet Authentication Client

Banner SSL VPN User Guide

Integration Guide. SafeNet Authentication Service. Strong Authentication for Juniper Networks SSL VPN

Integration Guide. SafeNet Authentication Manager. Using RADIUS Protocol for Citrix NetScaler 10.5

SafeNet Authentication Service. Push OTP Solution Guide

ALTIRIS SECURITY SOLUTION 6.1 FOR HANDHELDS ADMINISTRATOR GUIDE

Online Services User Guide

OXE Free desktop Guide

Intellisync Mobile Suite Client Guide. S60 3rd Edition Platform

All you need to know about OCBC Google Pay

Integration Guide. SafeNet Authentication Service. SAS using RADIUS Protocol with WatchGuard XTMv. SafeNet Authentication Service: Integration Guide

BitLocker Encryption for non-tpm laptops

Note: It is highly recommended that users pre enroll while at work by going to

Application Security for Java-based BlackBerry Handhelds

Service Provider QUICKStart Guide

SafeNet Authentication Manager. Integration Guide. Using SAM as an Identity Provider for Dropbox

Password Changer User Guide

Implementation Guide for Funk Steel-Belted RADIUS

Commercial Card Expense Reporting (CCER)

Integration Guide. SafeNet Authentication Manager. Using SAM as an Identity Provider for Tableau Server

Enroll in Two factor Authentication - iphone

User Guide. Prepared by activpayroll s activ8 Team - Updated October Page 1 of 6

EAM Portal User's Guide

Congratulations You have just added an extra layer of security to your Bank Windhoek Internet Banking account. Manual

Hitachi High Technologies America, Inc. Password Policy

Nokia Intellisync Mobile Suite Client Guide. Palm OS Platform

Integration Guide. SafeNet Authentication Manager. Using SAM as an Identity Provider for PingFederate

March Networks Cloud 1.1 ADMINISTRATOR GUIDE

Guide Installation and User Guide - Mac

User Guide Advanced Authentication - Smartphone Applications. Version 6.1

Frequently Asked Questions

Registering a Card and Creating an Account on

PowerSchool 7.x Student Information System

SafeNet Authentication Client

Integration Guide. SafeNet Authentication Service. SAS Using RADIUS Protocol with CA SiteMinder

Report HQ. Quick Start Guide. Report HQ Quick Start Guide - Version 1.2

Registration Quick Reference Card for Employees/Associates

IMPORTANT SECURITY CHANGES LOGGING ON. We are replacing the existing enhanced authentication.

PowerSchool Student and Parent Portal User Guide.

RSA Solution Brief. Providing Secure Access to Corporate Resources from BlackBerry. Devices. Leveraging Two-factor Authentication. RSA Solution Brief

SECURING CORPORATE ASSETS WITH TWO FACTOR AUTHENTICATION

How-to Guide for Exercise Access the Demo Appliance Landscape (Week 1, Unit 6, Part 1)

Transcription:

Welcome Guide for MP-1 Token for Microsoft Windows Protecting Your On-line Identity Authentication Service Delivery Made EASY

Copyright 2013 SafeNet, Inc. All rights reserved. All attempts have been made to make the information in this document complete and accurate. SafeNet, Inc. is not responsible for any direct or indirect damages or loss of business resulting from inaccuracies or omissions. The specifications contained in this document are subject to change without notice. SafeNet and SafeNet Authentication Service are either registered with the U.S. Patent and Trademark Office or are trademarks of SafeNet, Inc., and its subsidiaries and affiliates, in the United States and other countries. All other trademarks referenced in this Manual are trademarks of their respective owners. SafeNet Hardware and/or Software products described in this document may be protected by one or more U.S. Patents, foreign patents, or pending patent applications. Please contact SafeNet Support for details of FCC Compliance, CE Compliance, and UL Notification. Support SafeNet technical support specialists can provide assistance when planning and implementing SafeNet Authentication Service. In addition to aiding in the selection of the appropriate authentication products, SafeNet can suggest deployment procedures that will provide a smooth, simple transition from existing access control systems and a satisfying experience for network users. We can also help you leverage your existing network equipment and systems to maximize your return on investment. SafeNet works closely with channel partners to offer worldwide Technical Support services. If you purchased this product through a SafeNet channel partner, please contact your partner directly for support needs. To contact SafeNet Authentication Service support directly: Europe / EMEA Freephone: Telephone: 0800 694 1000 (UK) +44 (0)1276 608 000 (Int l) North America Toll Free: 800-307-7042 Telephone: +1 613 599 2441 E-mail: sassupport@safenet-inc.com E-mail: sassupport@safenet-inc.com Welcome 2

Publication History Date Description Revision 2013.07.15 Screens updated with SafeNet branding Updated for 3.3 1.2 2012.06.30 Updates to reflect SafeNet branding. 1.1 2011.05.06 Initial release 1.0 Welcome 3

Contents Welcome... 5 What is a MP-1 Software Token?... 5 How does it protect me?... 5 Can anybody use my MP-1?... 6 How does it work?... 6 How do I create a Security PIN?... 6 What is Self-Enrollment... 6 I have not received an Enrollment E-mail... 6 The Self-enrollment process... 6 How do I use my MP-1?... 11 What if my token shuts off while I m entering the token code?... 11 What are my responsibilities?... 11 Protect your Security PIN... 12 How can I change my PIN?... 12 What if I forget my PIN?... 12 What if my token is Locked?... 12 What should I do if I can t logon using my token?... 12 How long will my token continue to operate?... 12 Customizing Your Token... 12 Multiple Tokens... 13 Change PIN... 13 Resync... 13 Unlock Token... 14 Welcome 4

Welcome Your company has chosen SafeNet Authentication Service Cloud Managed Authentication Service to help you protect your on-line identity and the networks, applications and data you use from unauthorized access. In this package you will find instructions for installing and activating your MP-1 token. Once activated, you will use your MP-1 token every time you logon. What is a MP-1 Software Token? Figure 1: MP-1 Software Token for Windows Up until now, you ve logged on with your User Name and Password. The problem is that passwords are easily compromised, putting your identity and the resources you access at risk. By using a MP-1 you will be able to generate a One-time Password or OTP. As the name implies, an OTP can only be used once. Each time you logon you will use your MP-1 to generate a new OTP. How does it protect me? Password theft is the single most common way thieves and hackers steal identities and gain unauthorized access to networks and resources. While they have many ways to steal a password, success depends on the stolen password being valid, much the way credit card theft relies on the card being usable until you report it as stolen. The problem of course is that it is almost impossible for you or the security professionals that manage your network to discover your password has been compromised until long after damage has been done. The MP-1 solves this problem because the instant you logon with your OTP, it is no longer valid. Any attempt to logon by reusing the OTP will not only fail, but also instantly alert your network security professionals to a possible attack on your identity. Welcome 5

Can anybody use my MP-1? Your MP-1 is protected against unauthorized use by a Security PIN only you know. Again, much like a bank card or Chip and PIN credit card, the thief not only needs access to your MP-1 but must know your PIN as well. Any attempt to use the MP-1 with and incorrect PIN will fail. Successive attempts to guess your PIN will automatically Lock your MP-1, effectively disabling it, giving you and your network security professionals time to deal with the threat. How does it work? Each time you need an OTP, the MP-1 will prompt you to enter your Security PIN. For example: Security PIN OTP 1427 48466628 1427 4Kz6371R 1427 669-9487 How do I create a Security PIN? You have or will shortly receive a Self-enrollment Email from your company which contains a unique URL to the self-enrollment web site and instructions for installing the MP-1 software, enrolling and activating your token. You will create a Security PIN that only you know during self-enrollment. What is Self-Enrollment Self-enrollment is a simple process for activating your token and creating your PIN. When you complete this process you will be able to use your token when you logon. I have not received an Enrollment E-mail If you have not received your self-enrollment email, contact your security administrator to arrange for a new self-enrollment email to be sent to you. The Self-enrollment process The process begins when you receive your self-enrollment e-mail notification containing instructions and an enrollment URL. What is Self-Enrollment 6

Figure 2: Example Self-enrollment e-mail Step 1: Read the instructions in the email message and click on the link. The enrollment web site will display a list of devices or Targets approved by your security administrator such as a local computer or smart phone on which the MP-1 can be installed. Choose Install Locally and click the Next button to start the process of loading the token onto your Windows computer. Figure 3: Select Install Locally to install on Windows Step 2: The next page displays links to download and install the MP-1 application called Software Tools. What is Self-Enrollment 7

Figure 4: Select Download Software Tools Option If the Software Tools application is installed on your computer, you can copy the activation code and paste it into the Software Tools. If the Software Tools application is not installed on your computer, select Download Software Tools and Activate Token and then select Download Software Tools Figure 5: Download Software Tools Complete the installation by following the on-screen instructions, then click Next to continue. Step 3: Depending on your browser configuration you may be prompted to download the token file. If so, click the Download button and save the file to your desktop, then click Next to continue. If you were not prompted, go to Step 4. What is Self-Enrollment 8

Figure 6: Download Token File Minimize your browser, then locate and double-click the MP token file you saved to your desktop (.7mp extension). Step 4: The MP-1 application will now load the MP token file. To complete the process you will be prompted by the MP-1 application to provide the PIN displayed in your browser. Be sure to memorize this PIN value. Enter the PIN as displayed on the screen then click the OK button in the MP-1 application. Figure 7: Initial PIN required to Load MP token What is Self-Enrollment 9

Step 5: Your administrator may require that you change the Initial PIN (Step 4) to a value only you know before the token can generate an OTP. If this is the case, enter the Initial PIN value (as displayed) into the Current PIN field, then enter and verify the new PIN. Figure 8: Token Code Your token will display a Token Code. Follow the on-screen instructions to enter the token code (this will vary according to your system configuration). Click Next to continue. Your token has been enrolled and can now be used to authenticate. Figure9: Enrollment Complete Confirmation What is Self-Enrollment 10

How do I use my MP-1? Every time you need an OTP to logon, begin by tapping the MP-1 icon and then enter your Security PIN. If you have more than one token loaded you must select a before you will be prompted to enter your PIN. Figure 10: Using the MP-1 OTP Remember, every time you logon you will enter your Security PIN to generate an OTP, then type or copy the OTP into the appropriate password or OTP field. Use the icon to the right of the Token Code field to copy to clipboard. Right click in the password field to paste the code into the field. What if my token shuts off while I m entering the token code? Simply generate a new token code by clicking the Generate Token Code button and then enter your Security PIN. Enter the Token Code into the appropriate password field and logon as normal. What are my responsibilities? Using the MP-1 will not only provide security, it will simplify your life be reducing or eliminating the need to remember or periodically change passwords. Your token will do this for you, every time you logon. However, you do have a few simple obligations: How do I use my MP-1? 11

Protect your Security PIN Protect your Security PIN just as you would the PIN for your bank or credit card. Never share it with anybody, including people you trust. Your network security administrator and help desk will never ask for your PIN and you should never reveal it to them. Never write down your PIN. How can I change my PIN? If you wish to change your PIN or are concerned that it has been compromised tap the Edit button (Error! Reference source not found. on page Error! Bookmark not defined.), then tap the blue token tile, then enter your current security PIN. This will display a list of options. Select the Change PIN option from the list. Enter and confirm the new security PIN. Tap the Done button to exit the edit mode. What if I forget my PIN? Contact your help desk. Upon verifying your identity they will be able to reset your PIN. What if my token is Locked? This indicates that there has been an attempt to generate OTPs using an incorrect PIN. Contact your help desk). Upon verifying your identity they will be able to reset your PIN. What should I do if I can t logon using my token? The most common cause of failed logon is entering an incorrect OTP. Never attempt to reuse a token code and ensure that you enter the code exactly as displayed on the token, including any upper and lower case letters and punctuation that it may contain. Your account will automatically lock for a period of time if the maximum number of consecutive failed logon attempts is exceeded. You must wait this amount of time before your account will unlock. Contact the help desk to resolve logon problems. How long will my token continue to operate? Your token will be able to generate OTPs until it is revoked by your Security administrator. Customizing Your Token You can customize your token in several ways: Change your PIN, Resync the token, Rename the token, generate signatures and unlock a token. To access any of these functions, click the Tools option. What should I do if I can t logon using my token? 12

Multiple Tokens It is possible to load several tokens into the MP-1 applications. A dropdown list provides access to additional loaded tokens. Figure 11: MP with multiple tokens Change PIN This option is used to change the PIN of the selected token. You will be required to provide the current PIN and then create and confirm a new PIN. Resync This option is rarely required and should only be used on instruction from your help desk. Enter the challenge provided by your administrator (or from the self-service site) and the PIN for the token. Give the resulting token code to your administrator or enter into the appropriate field on the self-service resync page. Figure 5: Resync Token Challenge Figure 6: Resync Token - Token Code Customizing Your Token 13

Unlock Token If an incorrect PIN is entered into the token too many times consecutively, the token will become locked. If your token is locked, click the Unlock Token option. Contact your administrator if your token is locked and this option is not available. Figure 7: Unlock Token Option Figure 8: Unlock Token Read the unlock challenge to your administrator exactly as displayed including proper case. Your administrator will provide a Server Response which must be entered exactly (case sensitive) as provided, then click OK. SIGNATURE ON/OFF The signature function is off by default and should not be used unless advised by your Security administrator. Customizing Your Token 14

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback