There are 2 ways to configure
Method 1: Using Two Factor Auth (Direct Token Login)
Configuring Password Server to use 2FA
- In the AuthAnvil Password Server go to the Settings tab, and expand AuthAnvil Two Factor Auth Settings
- Set the AuthAnvil SAS URL and Site ID to match your 2FA installation
- Configure any users that will be using 2FA. On the Users tab click on the target user to edit them, and check the box, Requires two-factor authentication to login. This will assume the top-level 2FA settings configuring on the Settings page in Password Server, but you can manually change these settings on the "Two Factor Authentication Settings" tab in the user as well.
Configuring Users for 2FA
To configure authentication using your SoftToken or hardware token in Two Factor Auth, you need to make sure there is a matching username in AuthAnvil 2FA. Since 2FA authenticates using the exact username used for logging in, we either need a Standard User with your email address as the username, or we need to create a Grouped User with your token account as a member.
Since most users already have a token, they will want to create a Grouped User as a sort of "alias" account, where the username is the full . This allows your single token to authenticate additional usernames.
If you do NOT have a token yet, you can create a Standard User that matches the full email address of the Password Server account.
This article outlines the different user types in 2FA: https://helpdesk.kaseya.com/entries/40094227
Method 2: Using Single Sign On (One-click Login)
Rather than logging in with an additional 2FA code every time you go to AuthAnvil Password Server, the easiest method to log in is to configure it for Single Sign On access. To configure Password Server to allow SSO logins, follow the steps in this article: https://helpdesk.kaseya.com/entries/39883726