ProHoster > Π‘Π»ΠΎΠ³ > Kev tswj hwm > Ob-factor authentication ntawm lub xaib siv lub cim USB. Yuav ua li cas nkag mus rau hauv qhov kev pabcuam portal ruaj ntseg?

Ob-factor authentication ntawm lub xaib siv lub cim USB. Yuav ua li cas nkag mus rau hauv qhov kev pabcuam portal ruaj ntseg?

Ob-factor authentication ntawm lub xaib siv lub cim USB. Yuav ua li cas nkag mus rau hauv qhov kev pabcuam portal ruaj ntseg?

Hackers tau nkag mus rau lub ntsiab mail server ntawm lub tuam txhab thoob ntiaj teb Deloitte. Tus thawj tswj hwm tus account rau tus neeg rau zaub mov no tsuas yog tiv thaiv los ntawm tus password.

Independent Austrian kws tshawb fawb David Cua tau txais txiaj ntsig ntawm $ 5 rau kev tshawb pom qhov tsis zoo hauv Google intranet nplooj ntawv nkag.

91% ntawm cov tuam txhab Lavxias zais cov ntaub ntawv xau.

Cov xov xwm zoo li no tuaj yeem pom yuav luag txhua hnub hauv Internet xov xwm pub. Qhov no yog cov pov thawj ncaj qha tias lub tuam txhab cov kev pabcuam sab hauv yuav tsum tau tiv thaiv.

Thiab lub tuam txhab loj dua, cov neeg ua haujlwm ntau dua nws muaj thiab qhov nyuaj ntawm nws cov khoom siv hauv IT, ntau qhov teeb meem ntawm cov ntaub ntawv xau yog rau nws. Cov ntaub ntawv dab tsi txaus siab rau cov neeg tawm tsam thiab yuav tiv thaiv nws li cas?

Cov ntaub ntawv zoo li cas tuaj yeem ua rau lub tuam txhab?

  • cov ntaub ntawv hais txog cov neeg siv khoom thiab kev lag luam;
  • cov ntaub ntawv khoom siv thiab kev paub txog;
  • cov ntaub ntawv hais txog cov neeg koom tes thiab muab tshwj xeeb;
  • tus kheej cov ntaub ntawv thiab accounting.

Thiab yog tias koj nkag siab tias qee cov ntaub ntawv los ntawm cov npe saum toj no nkag tau los ntawm ib ntu ntawm koj lub network tsuas yog thaum nthuav qhia tus ID nkag mus thiab lo lus zais, ces koj yuav tsum xav txog kev nce qib ntawm cov ntaub ntawv kev ruaj ntseg thiab tiv thaiv nws los ntawm kev nkag mus tsis raug cai.

Ob qhov kev lees paub qhov tseeb uas siv cov khoom siv cryptographic media (tokens lossis daim npav ntse) tau txais lub koob npe nrov rau kev ntseeg siab heev thiab tib lub sijhawm siv tau yooj yim heev.

Peb sau txog cov txiaj ntsig ntawm ob qhov kev lees paub tseeb hauv yuav luag txhua kab lus. Koj tuaj yeem nyeem ntxiv txog qhov no hauv cov lus hais txog yuav ua li cas tiv thaiv tus account hauv Windows sau ΠΈ email.

Hauv tsab xov xwm no, peb yuav qhia koj yuav ua li cas siv ob-factor authentication los nkag rau hauv koj lub koom haum lub portals sab hauv.

Ua piv txwv, peb yuav coj tus qauv tsim nyog tshaj plaws rau kev siv lag luam, Rutoken - cryptographic USB token Rutoken EDS PKI.

Ob-factor authentication ntawm lub xaib siv lub cim USB. Yuav ua li cas nkag mus rau hauv qhov kev pabcuam portal ruaj ntseg?

Cia peb pib nrog kev teeb tsa.

Kauj ruam 1 - Server Setup

Lub hauv paus ntawm txhua tus neeg rau zaub mov yog lub operating system. Nyob rau hauv peb rooj plaub, qhov no yog Windows Server 2016. Thiab nrog rau nws thiab lwm yam kev khiav hauj lwm ntawm lub tsev neeg lub qhov rais, IIS (Internet Information Services) yog muab faib.

IIS yog ib pawg ntawm Internet servers, suav nrog lub web server thiab FTP server. IIS suav nrog cov ntawv thov tsim thiab tswj cov vev xaib.

IIS yog tsim los tsim cov kev pabcuam hauv web uas siv cov neeg siv nyiaj muab los ntawm tus sau lossis Active Directory. Qhov no tso cai rau koj siv cov neeg siv cov ntaub ntawv uas twb muaj lawm.

Π’ thawj tsab xov xwm Peb tau piav qhia meej txog yuav ua li cas rau nruab thiab teeb tsa Cov Ntawv Pov Thawj Tso Cai ntawm koj lub server. Tam sim no peb yuav tsis nyob ntawm qhov no hauv kev nthuav dav, tab sis yuav xav tias txhua yam twb tau teeb tsa lawm. Daim ntawv pov thawj HTTPS rau lub vev xaib server yuav tsum raug muab tawm kom raug. Nws yog qhov zoo dua los xyuas qhov no tam sim ntawd.

Windows Server 2016 los nrog IIS version 10.0 built-in.

Yog tias IIS raug teeb tsa, ces txhua yam uas tseem tshuav yog txhawm rau txhim kho nws kom raug.

Nyob rau theem ntawm kev xaiv lub luag haujlwm pabcuam, peb kos lub thawv Basic authentication.

Ob-factor authentication ntawm lub xaib siv lub cim USB. Yuav ua li cas nkag mus rau hauv qhov kev pabcuam portal ruaj ntseg?

Ces nyob rau hauv Internet Information Services Manager tig rau Basic authentication.

Ob-factor authentication ntawm lub xaib siv lub cim USB. Yuav ua li cas nkag mus rau hauv qhov kev pabcuam portal ruaj ntseg?

Thiab qhia qhov chaw uas lub web server nyob.

Ob-factor authentication ntawm lub xaib siv lub cim USB. Yuav ua li cas nkag mus rau hauv qhov kev pabcuam portal ruaj ntseg?

Ob-factor authentication ntawm lub xaib siv lub cim USB. Yuav ua li cas nkag mus rau hauv qhov kev pabcuam portal ruaj ntseg?

Tom qab ntawd peb ntxiv ib qhov chaw txuas.

Ob-factor authentication ntawm lub xaib siv lub cim USB. Yuav ua li cas nkag mus rau hauv qhov kev pabcuam portal ruaj ntseg?

Thiab xaiv cov kev xaiv SSL.

Ob-factor authentication ntawm lub xaib siv lub cim USB. Yuav ua li cas nkag mus rau hauv qhov kev pabcuam portal ruaj ntseg?

Qhov no ua tiav kev teeb tsa server.

Tom qab ua tiav cov kauj ruam no, tsuas yog tus neeg siv uas muaj lub cim nrog daim ntawv pov thawj thiab tus lej PIN token yuav nkag mus rau qhov chaw.

Peb qhia koj ib zaug ntxiv tias raws li thawj tsab xov xwm, tus neeg siv yav dhau los tau muab ib lub token nrog cov yuam sij thiab daim ntawv pov thawj tawm raws li tus qauv zoo li Tus neeg siv nrog daim npav ntse.

Tam sim no cia peb mus rau kev teeb tsa tus neeg siv lub computer. Nws yuav tsum teeb tsa cov browsers nws yuav siv los txuas rau cov vev xaib tiv thaiv.

Kauj ruam 2 - Teeb tsa tus neeg siv lub computer

Rau qhov yooj yim, cia peb xav tias peb cov neeg siv muaj Windows 10.

Cia peb xav tias nws muaj cov khoom siv nruab Rutoken tsav tsheb rau Windows.

Txhim kho cov txheej txheem tsav tsheb yog xaiv tau, vim tias feem ntau yuav txhawb nqa lub token yuav tuaj txog ntawm Windows Update.

Tab sis yog tias qhov no dheev tsis tshwm sim, tom qab ntawd txhim kho cov txheej txheem ntawm Rutoken Drivers rau Windows yuav daws txhua yam teeb meem.

Cia peb txuas lub token rau tus neeg siv lub computer thiab qhib Rutoken Control Vaj Huam Sib Luag.

Hauv tab Cov ntawv pov thawj Kos lub npov nyob ib sab ntawm daim ntawv pov thawj xav tau yog tias nws tsis raug kuaj xyuas.

Yog li, peb tau txheeb xyuas tias lub token ua haujlwm thiab muaj daim ntawv pov thawj xav tau.

Ob-factor authentication ntawm lub xaib siv lub cim USB. Yuav ua li cas nkag mus rau hauv qhov kev pabcuam portal ruaj ntseg?

Tag nrho cov browsers tshwj tsis yog Firefox tau teeb tsa tau txais.

 

Koj tsis tas yuav ua dab tsi tshwj xeeb nrog lawv.

Tam sim no qhib txhua qhov browser thiab nkag mus rau qhov chaw nyob.

Ua ntej qhov chaw thauj khoom, lub qhov rai yuav qhib rau xaiv daim ntawv pov thawj, thiab tom qab ntawd lub qhov rais nkag mus rau tus lej PIN token.

Ob-factor authentication ntawm lub xaib siv lub cim USB. Yuav ua li cas nkag mus rau hauv qhov kev pabcuam portal ruaj ntseg?

Ob-factor authentication ntawm lub xaib siv lub cim USB. Yuav ua li cas nkag mus rau hauv qhov kev pabcuam portal ruaj ntseg?

Yog tias Aktiv ruToken CSP raug xaiv los ua tus muab kev pabcuam crypto rau lub cuab yeej, lwm lub qhov rai yuav qhib kom nkag mus rau tus lej PIN.

Ob-factor authentication ntawm lub xaib siv lub cim USB. Yuav ua li cas nkag mus rau hauv qhov kev pabcuam portal ruaj ntseg?

Thiab tsuas yog tom qab ua tiav nkag mus rau hauv qhov browser yuav peb lub vev xaib qhib.

Ob-factor authentication ntawm lub xaib siv lub cim USB. Yuav ua li cas nkag mus rau hauv qhov kev pabcuam portal ruaj ntseg?

Rau Firefox browser, yuav tsum tau teeb tsa ntxiv.

Hauv koj qhov browser nqis xaiv Tsis pub twg paub thiab kev ruaj ntsegCov. Hauv seem Cov ntawv pov thawj mus nias Cov cuab yeej tiv thaiv... Lub qhov rais yuav qhib Kev tswj cov cuab yeej.

Xov Xwm download, qhia lub npe Rutoken EDS thiab txoj kev C:windowssystem32rtpkcs11ecp.dll.

Ob-factor authentication ntawm lub xaib siv lub cim USB. Yuav ua li cas nkag mus rau hauv qhov kev pabcuam portal ruaj ntseg?

Ntawd yog nws, Firefox tam sim no paub yuav ua li cas tswj lub token thiab tso cai rau koj nkag mus rau hauv qhov chaw siv nws.

Ob-factor authentication ntawm lub xaib siv lub cim USB. Yuav ua li cas nkag mus rau hauv qhov kev pabcuam portal ruaj ntseg?

Los ntawm txoj kev, nkag mus siv lub token rau cov vev xaib kuj ua haujlwm ntawm Macs hauv Safari, Chrome thiab Firefox browser.

Koj tsuas yog yuav tsum tau nruab Rutoken los ntawm lub vev xaib Keychain txhawb module thiab saib daim ntawv pov thawj ntawm lub token hauv nws.

Ob-factor authentication ntawm lub xaib siv lub cim USB. Yuav ua li cas nkag mus rau hauv qhov kev pabcuam portal ruaj ntseg?

Tsis tas yuav teeb tsa Safari, Chrome, Yandex thiab lwm tus browsers; koj tsuas yog xav qhib qhov chaw hauv ib qho ntawm cov browsers no.

Ob-factor authentication ntawm lub xaib siv lub cim USB. Yuav ua li cas nkag mus rau hauv qhov kev pabcuam portal ruaj ntseg?

Firefox browser tau teeb tsa yuav luag zoo ib yam li hauv Windows (Settings - Advanced - Certificate - Security devices). Tsuas yog txoj hauv kev mus rau lub tsev qiv ntawv txawv me ntsis /Library/Akitv Co/Rutoken ECP/lib/librtpkcs11ecp.dylib.

tshawb pom

Peb tau qhia koj yuav ua li cas teeb tsa ob qhov kev lees paub tseeb ntawm cov vev xaib siv cryptographic tokens. Raws li ib txwm muaj, peb tsis xav tau software ntxiv rau qhov no, tsuas yog rau cov tsev qiv ntawv Rutoken system.

Koj tuaj yeem ua cov txheej txheem no nrog ib qho ntawm koj cov peev txheej sab hauv, thiab koj tuaj yeem hloov kho cov neeg siv cov pab pawg uas yuav nkag mus rau lub xaib, ib yam li lwm qhov hauv Windows Server.

Koj puas siv lwm OS rau lub server?

Yog tias koj xav kom peb sau txog kev teeb tsa lwm lub operating system, ces sau txog nws hauv cov lus rau hauv tsab xov xwm.

Tau qhov twg los: www.hab.com

Ntxiv ib saib