Episode 12: Two Factors Enter, One Factor Leaves
MacAdmins.org Podcast, Episode 12: Two Factors Enter, One Factor Leaves
Your Hosts:
- Tom Bridge, Partner at Technolutionary LLC [@tbridge]
- Pepijn Bruienne, R&D Engineer at Duo Security [@bruienne], Proprietor of EnterpriseMac.Bruienne.com
- Charles Edge, Director of Professional Services at JAMF Software, That Guy at Krypted.com [@cedge318]
Guests:
- Richard Purves, Senior Mac Consultant at REDACTED
Synopsis:
Tom, Charles and Pepijn talk with Richard Purves on the role of multi-factor authentication (MFA) in Mac systems administration, including a short history of MFA, how to work with MFA in macOS Sierra and Mac OS X. We cover a bunch of the infrastructure necessary to work with MFA, as well as tactics and strategies for their inclusion in your IT operations.
Listen!
Links
Plink plink fizz method – Decapping Chips the strike easy hard way – Defcon Video
WARNING: Deals with either carcinogenic or flammable or corrosive chemicals. Usually a combination of two of these! Informational only: do not perform unless a trained lab chemist.
Sc_auth
Pkinit
Heimdall Version
Note that on OS X, this information is good background but doesn’t seem to work on macOS. Doing anything with the kerberos realm appears to be ignored and Apple instead looks for a file at /etc/cacconfiglogin.plist instead.
$ sudo security authorizationdb smartcard enable
Richard’s Blog Posts on Smart Cards
Part 1
Part 2
Rate Us On iTunes!
Upcoming Conferences:
JAMF Nation User Conference – Registration open!
MacTech Conference – Registration open!
Sponsor MacAdmins.org Podcast!
If you’re interested in sponsoring the MacAdmins.org Podcast, please email podcast@macadmins.org for more information.
Social Media
Get the latest about the Mac Admins Podcast, follow us on Twitter! We’re @MacAdmPodcast!
Support the podcast by becoming a backer on Patreon. All backer levels get access to exclusive content!
