
Next up is to create an active directory group for users that are allowed to authenticate against multiotp. Just a normal domain users without any special rights or groups is fine! ()įirst we will need to create a multiotp service user in active directory, this user is used by multiotp to authenticate and sync the users from ad.
Mfa code amazon workspaces zip#
In the same folder of the powershell script download version 5.1.1.2 of the multiotp zip file.
Mfa code amazon workspaces install#
(If you want to install it to a separate server, this is possible, but your need to change the $server_name in the script…)Ĭopy the powershell script from this blog post to a folder on your domain controller.ĭownload and install powershell version 5.1 (), else the included script will not work. Powershell script included in this blog post -> multiotp-setupįor the purpose of this blog the script can only function on a domain controller.a working domain controller ( in the extra’s below i have a cloudformation template that deploys a new domain controller in an new domain for testing purposes).So the components you already need in place are: This also implies that you have your own active directory domain to connect the AD connector to.


We will be using the opensource version of Multiotp for windows. This post will guide you through the steps needed to setup multi-factor authentication for your workspaces. There are however some prerequisites for this. If you want to have an extra layer of security on your workspaces environment, AWS allows you to configure multi factor authentication.
