cours authentication manager rsa
DESCRIPTION
Formation RSA AM 6.xTRANSCRIPT
![Page 1: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/1.jpg)
e-Xpert Solutions SA | 29, route de Pré-Marais | CH 1233 Bernex-Genève | Tél +41 22 727 05 55 | Fax +41 22 727 05 50
[email protected] | www.e-xpertsolutions.com
Volume 1/1Par Sylvain Maret / CTO e-Xpert Solutions SA
Genève / Juillet 2007
TutorialAuthentification Forte
RSA Authentication Manager / Ace Server
![Page 2: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/2.jpg)
Solutions à la clef
“ L’art de fortifier ne consiste pas dans des règles et des systèmesmais uniquement dans le bon sens et l’expérience ”
Sebastien le Prestre de VaubanIngénieur Architecte 1633-1707
![Page 3: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/3.jpg)
Solutions à la clef
Agenda
SecurID Concept Architecture Agents Tokens
Administration Users Tokens
De la pratique (Appliance)
Centre de support
![Page 4: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/4.jpg)
Solutions à la clef
On the Internet, no one knows you’re a dog
![Page 5: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/5.jpg)
Solutions à la clef
Why Password is not Enough ?
Social engineering
Password cracking “Crack” “L0phtCrack” “Cracker Jack”
Network sniffing http://www.l0pht.com/l0phtcrack/ http://www.cultdeadcow.com http://www.2600.com http://www.technotronic.com http://www.phrack.com http://www.jabukie.com http://www.rootshell.com
![Page 6: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/6.jpg)
Solutions à la clef
Token SecurID
![Page 7: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/7.jpg)
Solutions à la clef
Rappel de la technologie SecurID
Login: JSMITHPasscode: 2468234836
PIN TOKENCODE
Token code: Changes every
60 seconds
PASSCODE = +PIN TOKENCODE
![Page 8: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/8.jpg)
Solutions à la clef
Rappel de la technologie SecurID
SeedTime
Authentication Authentication ManagerManager
TokenToken
Algorithm
SeedTime
234836234836
Algorithm
Same SeedSame Seed
Same TimeSame Time
234836234836
![Page 9: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/9.jpg)
Solutions à la clef
Utilisation de CrypTool
![Page 10: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/10.jpg)
Solutions à la clef
Time SynchronizationHow it works
T0
298347
986236
459047
Authentication Manager Calculations
329545
683202
462705
471719
536127
852698
868135
879230
t+1
t+2
t+3
t+4
t+5
t-1
t-5
t-4
t-3
t-2
Valid
Token clock may drift
{
}
}
“Pleaseenter Next
Tokencode”
T0 reset: With each Login, Token
Offset is recorded in AuthenticationManager
![Page 11: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/11.jpg)
Solutions à la clef
Tokens
![Page 12: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/12.jpg)
Solutions à la clef
Sofware Tokens
![Page 13: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/13.jpg)
Solutions à la clef
Athentication Manager Agents
![Page 14: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/14.jpg)
Solutions à la clef
Agents
![Page 15: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/15.jpg)
Solutions à la clef
Architecture
![Page 16: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/16.jpg)
Solutions à la clef
Time Syncro: UTC
![Page 17: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/17.jpg)
Solutions à la clef
Replica
![Page 18: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/18.jpg)
Solutions à la clef
Windows Logon (Obselete)
![Page 19: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/19.jpg)
Solutions à la clef
Offline Module (Obselete)
![Page 20: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/20.jpg)
Solutions à la clef
Architecture
![Page 21: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/21.jpg)
Solutions à la clef
RDBMS
![Page 22: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/22.jpg)
Solutions à la clef
Replica RDBMS
![Page 23: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/23.jpg)
Solutions à la clef
SDADMIN
![Page 24: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/24.jpg)
Solutions à la clef
SDADMIN Local
![Page 25: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/25.jpg)
Solutions à la clef
SDADMIN Remote
![Page 26: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/26.jpg)
Solutions à la clef
Quick Admin
![Page 27: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/27.jpg)
Solutions à la clef
Quick Admin
![Page 28: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/28.jpg)
Solutions à la clef
More than 300 agents
![Page 29: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/29.jpg)
Solutions à la clef
SecurID Ready
![Page 30: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/30.jpg)
Solutions à la clef
RSA Web Site
![Page 31: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/31.jpg)
Solutions à la clef
![Page 32: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/32.jpg)
Solutions à la clef
Length of token file ?
![Page 33: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/33.jpg)
Solutions à la clef
AES
![Page 34: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/34.jpg)
Solutions à la clef
Architecture
![Page 35: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/35.jpg)
Solutions à la clef
Notion de Replica
![Page 36: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/36.jpg)
Solutions à la clef
Replica
![Page 37: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/37.jpg)
Solutions à la clef
Lock Manager
![Page 38: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/38.jpg)
Solutions à la clef
![Page 39: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/39.jpg)
Solutions à la clef
Comportement de l’agent
![Page 40: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/40.jpg)
Solutions à la clef
Port entre agent et Ace / Server
![Page 41: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/41.jpg)
Solutions à la clef
Création du Node Secret
![Page 42: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/42.jpg)
Solutions à la clef
Port 5500
![Page 43: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/43.jpg)
Solutions à la clef
Les Ports
![Page 44: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/44.jpg)
Solutions à la clef
Intégration avec Radius
![Page 45: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/45.jpg)
Solutions à la clef
RSA SecurID Appliance
![Page 46: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/46.jpg)
Solutions à la clef
RSA ® SecurID Authentication Deployment Manager
![Page 47: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/47.jpg)
Solutions à la clef
Authentication Deployment Manager Features Hardware token approval process
Web Server
RSA Authentication Manager
User Manager
Distributor
4b
Approval Code4a
User Request1
Approval 2Activation5
User info
3b3a
Activation6
![Page 48: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/48.jpg)
Solutions à la clef
Interface Web Express
![Page 49: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/49.jpg)
Solutions à la clef
Self Reset PIN
![Page 50: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/50.jpg)
Solutions à la clef
Questions ?
![Page 51: Cours Authentication Manager RSA](https://reader036.vdocuments.mx/reader036/viewer/2022062319/555a07fbd8b42ad00a8b53fb/html5/thumbnails/51.jpg)
Solutions à la clef
e-Xpert Solutions S.A. est une société Suisse de services spécialisée en sécurité informatique dont les fondateurs ont fait de leur passion leur métier :
La sécurité des systèmes d'information
Fort de leurs convictions et de leur expérience, nos ingénieurs conçoivent, déploient et maintiennent au quotidien des architectures de sécurité au moyen de solutions pragmatiques, basées sur des technologies fondamentales et novatrices, adaptées aux exigences de la clientèle.Cette approche, associée à des collaborateurs motivés, flexibles et au bénéfice d'une intégrité irréprochable, nous a permis d'assurer une croissance continue et de gagner la confiance d'une clientèle issue de tout domaine d'activité et de toute taille.Notre siège à Bernex/Genève et notre agence de Morges/Lausanne vous garantissent un contact de proximité.
http://www.e-xpertsolutions.com