If you are already a user of Duo Security Multi-factor or Two-factor authentication and would like to configure XTAM to use Duo, then please perform the following steps. Please note that you will need to be able to access and modify files on the XTAM host computer. Contact your XTAM System Administrator for assistance.
- Log on to the XTAM host computer.
- Open the file $XTAM_HOME/web/conf/catalina.properties
- Uncomment the following line only when a single global MFA for the entire XTAM is desired:
Edit the following lines by replacing the values after "=" with your specific Duo configuration parameters:
To generate the required keys in Duo, please refer to this Duo guide which describes how to create the Auth API application (steps 1-3).Copy
Use your same Duo Secret Key for both the cas.authn.mfa.duo.duoSecretKey= and cas.authn.mfa.duo.duoApplicationKey= parameters in the above configuration.
When complete, save and close this file.
Restart the service PamManagement.
If you wish to enable different MFA providers for individual users or group, please read this article for additional information.
Once configured, refer to the following article Duo Security MFA – How to Login to Xton Access Manager as a User for steps on how to use Duo MFA with XTAM from an end user’s perspective.