{"id":4781,"date":"2017-02-08T08:50:27","date_gmt":"2017-02-08T15:50:27","guid":{"rendered":"https:\/\/xmission.com\/blog\/?p=4781"},"modified":"2017-11-06T09:44:57","modified_gmt":"2017-11-06T16:44:57","slug":"6-steps-to-zimbra-two-factor-authentication-with-yubikey","status":"publish","type":"post","link":"https:\/\/xmission.com\/blog\/2017\/02\/08\/6-steps-to-zimbra-two-factor-authentication-with-yubikey","title":{"rendered":"6 steps to Zimbra two-factor authentication with YubiKey"},"content":{"rendered":"

\"\"We are proud to announce that XMission Zimbra\u00a0Email and Collaboration<\/a> now features two-factor authentication (2FA). Two-factor authentication is a technology that provides identification of users utilizing\u00a0two different components. Typically something\u00a0that you\u00a0know (like a password, UserID, etc) and something you have\u00a0(a smartphone, USB-key, etc.). Using 2FA protects you against phishing and other sophisticated attacks.<\/p>\n

In this post we’re working with the YubiKey NEO and an Android smartphone. The\u00a0YubiKey NEO<\/a>\"\"\u00a0USB and NFC security key offers an easy and secure way to log in to your services such as Zimbra<\/a>, Facebook<\/a>, Salesforce, GitHub and many more. YubiKeys are also supported by leading password managers, including LastPass<\/a>, KeePass<\/a>, and others. We like the super convenient NFC feature in the Neo. (NFC is use by services like ApplePay and Google Wallet and is what allows you to tap your mobile devices to payment kiosks as well as this two-factor authentication method where you simply touch your USB key to your phone.)<\/p>\n

Purchase your own\u00a0YubiKey NEO<\/a>\u00a0\"\"on Amazon.<\/p>\n

Here is how to configure:<\/p>\n

Step 1:<\/strong> Download the\u00a0Yubico Authenticator<\/a> app for Android or Desktop.<\/p>\n

Step 2:<\/strong> Insert YubiKey into your computer’s USB port or tap YubiKey to phone for NFC.<\/p>\n

Step 3:<\/strong>\u00a0On the Android phone, in the Yubico Authenticator app, tap the menu button in the top right corner of your screen and tap “Add account manually.” Here you will be asked for a name, code, and protocol. You can name it whatever you want, and the protocol should be set to TOTP.<\/p>\n

Step 4:<\/strong> Log in to Zimbra<\/a>, go to the Preferences tab along the top, then select Accounts in left column. Under Account Security, click on “Setup two-factor authentication…” Click “Begin Setup”\u00a0on the window that appears.<\/p>\n

\"\"<\/a><\/p>\n

 <\/p>\n

 <\/p>\n

Now confirm your Zimbra password and click “Next” to proceed.<\/p>\n

The next\u00a0screen instructs you to install an authentication application on\u00a0your phone and has a Zimbra.com wiki link to other TOTP authentication apps<\/a> for Android, iOS, and Windows. In Step 1 above, we installed the Yubico App on your phone so click\u00a0“Next” to get\u00a0your authentication code.<\/p>\n

 <\/p>\n

\"\"<\/a>
\nStep 5:<\/strong> Enter code generated by Zimbra into the “Secret key” field in the Yubico Authenticator app and click “Add”<\/p>\n

Step 6:<\/strong>\u00a0Tap or plug in YubiKey\u00a0again to save settings.<\/p>\n

Now that you have this configured, your YubiKey will work with your phone and desktop.\u00a0\u00a0<\/em><\/p>\n

NOTES: <\/em><\/p>\n