{"id":31735,"date":"2021-08-03T19:08:42","date_gmt":"2021-08-04T00:08:42","guid":{"rendered":"https:\/\/www.filecloud.com\/blog\/?p=31735"},"modified":"2023-05-01T03:13:42","modified_gmt":"2023-05-01T08:13:42","slug":"filecloud-sso-with-yubikey-and-adfs","status":"publish","type":"post","link":"https:\/\/www.filecloud.com\/blog\/filecloud-sso-with-yubikey-and-adfs\/","title":{"rendered":"FileCloud Single Sign-on with YubiKey and ADFS"},"content":{"rendered":"<p><img decoding=\"async\" loading=\"lazy\" class=\"aligncenter size-full wp-image-31831\" src=\"https:\/\/www.filecloud.com\/blog\/wp-content\/uploads\/2021\/08\/FC-SSO-with-ADFS-and-YubiKey-Banner.jpg\" alt=\"\" width=\"5334\" height=\"3000\"><\/p>\n<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_63 counter-hierarchy ez-toc-counter ez-toc-custom ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title \" >Table of Contents<\/p>\n<span class=\"ez-toc-title-toggle\"><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-1'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/www.filecloud.com\/blog\/filecloud-sso-with-yubikey-and-adfs\/#What_is_SSO\" title=\"What is SSO?\">What is SSO?<\/a><\/li><\/ul><\/nav><\/div>\n<h1><span class=\"ez-toc-section\" id=\"What_is_SSO\"><\/span>What is SSO?<span class=\"ez-toc-section-end\"><\/span><\/h1>\n<p>Single sign-on (SSO) is an authentication scheme that allows a user to log in with a single ID and password to any of several related, yet independent software systems.<\/p>\n<p>True single sign-on allows the user to log in once and access services without re-entering authentication factors.<\/p>\n<h3>What is Two-factor Authentication?<\/h3>\n<p>Two-factor authentication (2FA), sometimes referred to as <em>two-step verification <\/em>or <em>dual-factor authentication<\/em>, is a security process in which users provide two different\u00a0authentication factors\u00a0to verify themselves. This process is done to better protect both the user\u2019s credentials and the resources the user can access.<\/p>\n<h2>What is ADFS?<\/h2>\n<p>Active Directory Federation Services (ADFS), a software component developed by Microsoft, runs on Windows Server operating systems and provides users with single sign-on access to systems and applications located across organizational boundaries.<\/p>\n<h3>What is a YubiKey?<\/h3>\n<div id=\"attachment_31843\" style=\"width: 654px\" class=\"wp-caption aligncenter\"><img aria-describedby=\"caption-attachment-31843\" decoding=\"async\" loading=\"lazy\" class=\"wp-image-31843 size-full\" src=\"https:\/\/www.filecloud.com\/blog\/wp-content\/uploads\/2021\/08\/YubiKey-Devices.jpg\" alt=\"\" width=\"644\" height=\"456\"><\/p>\n<p id=\"caption-attachment-31843\" class=\"wp-caption-text\">Yubico offers different types of \u201cYubiKeys\u201d. The most recent release is the YubiKey 5 Series, which comes in USB-A, USB-C, Lightning, and NFC.<\/p>\n<\/div>\n<p>The <a href=\"https:\/\/www.yubico.com\/products\/\" target=\"_blank\" rel=\"noopener\">YubiKey<\/a> is a device that makes two-factor authentication as simple as possible. Instead of a code being texted to you or generated by an app on your phone, simply plug in your YubiKey and press a button. Each device has a unique code built into it, which generates additional codes that help confirm your identity.<\/p>\n<p>YubiKey is used by leaders in the tech industry across widely recognized platforms and software services. These include Microsoft, Google, Amazon, eBay, GitHub, Citrix, SalesForce, DropBox, Facebook, and Twitter, among others.<\/p>\n<h3>Set Up FileCloud SSO with ADFS and YubiKey as a 2FA method<\/h3>\n<ol>\n<li>Add YubiKey as a two-factor authentication method to ADFS 2019 by following the steps described <a href=\"https:\/\/contos.io\/yubikey-support-in-adfs-on-windows-server-2019-69d2fae9adc8\">here<\/a>.<\/li>\n<li>Find the GitHub Code <a href=\"https:\/\/github.com\/ahelland\/ADFSMFAAdapters\">here<\/a>.<\/li>\n<li>Add custom attributes to Users in Active Directory by following the steps described <a href=\"https:\/\/www.techtutsonline.com\/creating-custom-attributes-active-directory\" class=\"broken_link\">here<\/a>.<\/li>\n<li>Enable SAML SSO in FileCloud using the steps described here here.<\/li>\n<li>Set Up FileCloud SSO with ADFS using the steps described here.<\/li>\n<\/ol>\n<h2>FileCloud SSO with ADFS and YubiKey<\/h2>\n<p><img decoding=\"async\" loading=\"lazy\" class=\"aligncenter size-full wp-image-31753\" src=\"https:\/\/www.filecloud.com\/blog\/wp-content\/uploads\/2021\/08\/FC-SSO-with-YubiKey-Process-Diagram-.jpg\" alt=\"\" width=\"1512\" height=\"783\"><\/p>\n<p>When the user plugs in their YubiKey and presses the button to generate the token, the first 12 characters of the code are the YubiKey ID.<br \/>\nADFS compares the first 12 characters with the YubiKey ID added in the custom attribute. If they match, ADFS sends an API call to a cloud API gateway from the YubiKey. This API call confirms whether the code is valid.<\/p>\n<p>Once validated, the SSO session is confirmed. The user is redirected to their FileCloud dashboard. The whole process is easy, fast, and secure.<\/p>\n<p><strong>Article written by Wail Bouziane<\/strong><\/p>\n","protected":false},"excerpt":{"rendered":"<p>What is SSO? Single sign-on (SSO) is an authentication scheme that allows a user to log in with a single ID and password to any of several related, yet independent software systems. True single sign-on allows the user to log in once and access services without re-entering authentication factors. What is Two-factor Authentication? Two-factor authentication [&hellip;]<\/p>\n","protected":false},"author":31,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[20,72],"tags":[708,1696,1699,1693],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v20.13 (Yoast SEO v20.13) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>FileCloud Single Sign-on with YubiKey and ADFS - FileCloud blog<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.filecloud.com\/blog\/filecloud-sso-with-yubikey-and-adfs\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"FileCloud Single Sign-on with YubiKey and ADFS\" \/>\n<meta property=\"og:description\" content=\"What is SSO? Single sign-on (SSO) is an authentication scheme that allows a user to log in with a single ID and password to any of several related, yet independent software systems. True single sign-on allows the user to log in once and access services without re-entering authentication factors. What is Two-factor Authentication? Two-factor authentication [&hellip;]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.filecloud.com\/blog\/filecloud-sso-with-yubikey-and-adfs\/\" \/>\n<meta property=\"og:site_name\" content=\"FileCloud blog\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/tonidopage\" \/>\n<meta property=\"article:published_time\" content=\"2021-08-04T00:08:42+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-05-01T08:13:42+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.filecloud.com\/blog\/wp-content\/uploads\/2021\/08\/FC-SSO-with-ADFS-and-YubiKey-Banner.jpg\" \/>\n<meta name=\"author\" content=\"Katie Gerhardt\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@getfilecloud\" \/>\n<meta name=\"twitter:site\" content=\"@getfilecloud\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Katie Gerhardt\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.filecloud.com\/blog\/filecloud-sso-with-yubikey-and-adfs\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.filecloud.com\/blog\/filecloud-sso-with-yubikey-and-adfs\/\"},\"author\":{\"name\":\"Katie Gerhardt\",\"@id\":\"https:\/\/www.filecloud.com\/blog\/#\/schema\/person\/ea3506ea3e9eb7bb2036e6c7c8fc05ea\"},\"headline\":\"FileCloud Single Sign-on with YubiKey and ADFS\",\"datePublished\":\"2021-08-04T00:08:42+00:00\",\"dateModified\":\"2023-05-01T08:13:42+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.filecloud.com\/blog\/filecloud-sso-with-yubikey-and-adfs\/\"},\"wordCount\":426,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/www.filecloud.com\/blog\/#organization\"},\"keywords\":[\"2FA\",\"ADFS\",\"Single Sign-on\",\"YubiKey\"],\"articleSection\":[\"FileCloud\",\"Security\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.filecloud.com\/blog\/filecloud-sso-with-yubikey-and-adfs\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.filecloud.com\/blog\/filecloud-sso-with-yubikey-and-adfs\/\",\"url\":\"https:\/\/www.filecloud.com\/blog\/filecloud-sso-with-yubikey-and-adfs\/\",\"name\":\"FileCloud Single Sign-on with YubiKey and ADFS - FileCloud blog\",\"isPartOf\":{\"@id\":\"https:\/\/www.filecloud.com\/blog\/#website\"},\"datePublished\":\"2021-08-04T00:08:42+00:00\",\"dateModified\":\"2023-05-01T08:13:42+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.filecloud.com\/blog\/filecloud-sso-with-yubikey-and-adfs\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.filecloud.com\/blog\/filecloud-sso-with-yubikey-and-adfs\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.filecloud.com\/blog\/filecloud-sso-with-yubikey-and-adfs\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.filecloud.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"FileCloud Single Sign-on with YubiKey and ADFS\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.filecloud.com\/blog\/#website\",\"url\":\"https:\/\/www.filecloud.com\/blog\/\",\"name\":\"FileCloud blog\",\"description\":\"Topics on Private cloud, On-Premises, Self-Hosted, Enterprise File Sync and Sharing\",\"publisher\":{\"@id\":\"https:\/\/www.filecloud.com\/blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.filecloud.com\/blog\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.filecloud.com\/blog\/#organization\",\"name\":\"FileCloud\",\"url\":\"https:\/\/www.filecloud.com\/blog\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.filecloud.com\/blog\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.filecloud.com\/blog\/wp-content\/uploads\/2016\/02\/filecloud_logo_comparison.jpg\",\"contentUrl\":\"https:\/\/www.filecloud.com\/blog\/wp-content\/uploads\/2016\/02\/filecloud_logo_comparison.jpg\",\"width\":155,\"height\":40,\"caption\":\"FileCloud\"},\"image\":{\"@id\":\"https:\/\/www.filecloud.com\/blog\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/tonidopage\",\"https:\/\/twitter.com\/getfilecloud\",\"https:\/\/www.linkedin.com\/company\/codelathe\",\"https:\/\/www.pinterest.com\/filecloud\/filecloud\/\",\"https:\/\/www.youtube.com\/channel\/UCbU5gTFdNCPESA5aGipFW6g\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.filecloud.com\/blog\/#\/schema\/person\/ea3506ea3e9eb7bb2036e6c7c8fc05ea\",\"name\":\"Katie Gerhardt\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.filecloud.com\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/07bbf4097008eebfdc680520a6973c6e?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/07bbf4097008eebfdc680520a6973c6e?s=96&d=mm&r=g\",\"caption\":\"Katie Gerhardt\"},\"description\":\"Product Marketing Manager\",\"sameAs\":[\"1\",\"https:\/\/www.linkedin.com\/in\/katie-gerhardt-88541791\/\"],\"url\":\"https:\/\/www.filecloud.com\/blog\/author\/katie\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"FileCloud Single Sign-on with YubiKey and ADFS - FileCloud blog","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.filecloud.com\/blog\/filecloud-sso-with-yubikey-and-adfs\/","og_locale":"en_US","og_type":"article","og_title":"FileCloud Single Sign-on with YubiKey and ADFS","og_description":"What is SSO? Single sign-on (SSO) is an authentication scheme that allows a user to log in with a single ID and password to any of several related, yet independent software systems. True single sign-on allows the user to log in once and access services without re-entering authentication factors. What is Two-factor Authentication? Two-factor authentication [&hellip;]","og_url":"https:\/\/www.filecloud.com\/blog\/filecloud-sso-with-yubikey-and-adfs\/","og_site_name":"FileCloud blog","article_publisher":"https:\/\/www.facebook.com\/tonidopage","article_published_time":"2021-08-04T00:08:42+00:00","article_modified_time":"2023-05-01T08:13:42+00:00","og_image":[{"url":"https:\/\/www.filecloud.com\/blog\/wp-content\/uploads\/2021\/08\/FC-SSO-with-ADFS-and-YubiKey-Banner.jpg"}],"author":"Katie Gerhardt","twitter_card":"summary_large_image","twitter_creator":"@getfilecloud","twitter_site":"@getfilecloud","twitter_misc":{"Written by":"Katie Gerhardt","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.filecloud.com\/blog\/filecloud-sso-with-yubikey-and-adfs\/#article","isPartOf":{"@id":"https:\/\/www.filecloud.com\/blog\/filecloud-sso-with-yubikey-and-adfs\/"},"author":{"name":"Katie Gerhardt","@id":"https:\/\/www.filecloud.com\/blog\/#\/schema\/person\/ea3506ea3e9eb7bb2036e6c7c8fc05ea"},"headline":"FileCloud Single Sign-on with YubiKey and ADFS","datePublished":"2021-08-04T00:08:42+00:00","dateModified":"2023-05-01T08:13:42+00:00","mainEntityOfPage":{"@id":"https:\/\/www.filecloud.com\/blog\/filecloud-sso-with-yubikey-and-adfs\/"},"wordCount":426,"commentCount":0,"publisher":{"@id":"https:\/\/www.filecloud.com\/blog\/#organization"},"keywords":["2FA","ADFS","Single Sign-on","YubiKey"],"articleSection":["FileCloud","Security"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.filecloud.com\/blog\/filecloud-sso-with-yubikey-and-adfs\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.filecloud.com\/blog\/filecloud-sso-with-yubikey-and-adfs\/","url":"https:\/\/www.filecloud.com\/blog\/filecloud-sso-with-yubikey-and-adfs\/","name":"FileCloud Single Sign-on with YubiKey and ADFS - FileCloud blog","isPartOf":{"@id":"https:\/\/www.filecloud.com\/blog\/#website"},"datePublished":"2021-08-04T00:08:42+00:00","dateModified":"2023-05-01T08:13:42+00:00","breadcrumb":{"@id":"https:\/\/www.filecloud.com\/blog\/filecloud-sso-with-yubikey-and-adfs\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.filecloud.com\/blog\/filecloud-sso-with-yubikey-and-adfs\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.filecloud.com\/blog\/filecloud-sso-with-yubikey-and-adfs\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.filecloud.com\/blog\/"},{"@type":"ListItem","position":2,"name":"FileCloud Single Sign-on with YubiKey and ADFS"}]},{"@type":"WebSite","@id":"https:\/\/www.filecloud.com\/blog\/#website","url":"https:\/\/www.filecloud.com\/blog\/","name":"FileCloud blog","description":"Topics on Private cloud, On-Premises, Self-Hosted, Enterprise File Sync and Sharing","publisher":{"@id":"https:\/\/www.filecloud.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.filecloud.com\/blog\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.filecloud.com\/blog\/#organization","name":"FileCloud","url":"https:\/\/www.filecloud.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.filecloud.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.filecloud.com\/blog\/wp-content\/uploads\/2016\/02\/filecloud_logo_comparison.jpg","contentUrl":"https:\/\/www.filecloud.com\/blog\/wp-content\/uploads\/2016\/02\/filecloud_logo_comparison.jpg","width":155,"height":40,"caption":"FileCloud"},"image":{"@id":"https:\/\/www.filecloud.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/tonidopage","https:\/\/twitter.com\/getfilecloud","https:\/\/www.linkedin.com\/company\/codelathe","https:\/\/www.pinterest.com\/filecloud\/filecloud\/","https:\/\/www.youtube.com\/channel\/UCbU5gTFdNCPESA5aGipFW6g"]},{"@type":"Person","@id":"https:\/\/www.filecloud.com\/blog\/#\/schema\/person\/ea3506ea3e9eb7bb2036e6c7c8fc05ea","name":"Katie Gerhardt","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.filecloud.com\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/07bbf4097008eebfdc680520a6973c6e?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/07bbf4097008eebfdc680520a6973c6e?s=96&d=mm&r=g","caption":"Katie Gerhardt"},"description":"Product Marketing Manager","sameAs":["1","https:\/\/www.linkedin.com\/in\/katie-gerhardt-88541791\/"],"url":"https:\/\/www.filecloud.com\/blog\/author\/katie\/"}]}},"_links":{"self":[{"href":"https:\/\/www.filecloud.com\/blog\/wp-json\/wp\/v2\/posts\/31735"}],"collection":[{"href":"https:\/\/www.filecloud.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.filecloud.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.filecloud.com\/blog\/wp-json\/wp\/v2\/users\/31"}],"replies":[{"embeddable":true,"href":"https:\/\/www.filecloud.com\/blog\/wp-json\/wp\/v2\/comments?post=31735"}],"version-history":[{"count":34,"href":"https:\/\/www.filecloud.com\/blog\/wp-json\/wp\/v2\/posts\/31735\/revisions"}],"predecessor-version":[{"id":35046,"href":"https:\/\/www.filecloud.com\/blog\/wp-json\/wp\/v2\/posts\/31735\/revisions\/35046"}],"wp:attachment":[{"href":"https:\/\/www.filecloud.com\/blog\/wp-json\/wp\/v2\/media?parent=31735"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.filecloud.com\/blog\/wp-json\/wp\/v2\/categories?post=31735"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.filecloud.com\/blog\/wp-json\/wp\/v2\/tags?post=31735"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}