Page History

About the Indeed AirKey Provider component

Installation

1. Install AirKey Provider by running IndeedAM.AuthProviders.AirKey.msi installer.
2. After the installation is complete, system restart might be necessary. If the installation wizard prompts to restart the system - confirm this action.
3. The product removal/ restoring is carried out using the standard procedure for the supported operating systems, via Control panel menu.

Provider configuration

1. Run Windows registry editor.
2. Create AirKey key with nested value in HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Indeed-ID\BSPs section.

3. Create a string parameter named ServerUrl in AirKey section and specify the URL of your Indeed AirKeyCloudServer in it.

   Info
   You should specify the URL from "ServerUrl" parameter of AirKey Cloud Server configuration file.

   Image ModifiedImage Modified

4. Restart IIS server.

Configuring the smartphone application

Certificate configuration.

1. Export the root certificate to cer/crt format. pfx/p12 cannot be recognized as root certificate.
2. Send the certificate to smartphone and install it.
   1. Example of prompt to install a certificate for IOS devices.
   2. Example of prompt to install a certificate on Android devices. To install, specify name for the certificate and select “VPN and applications” in the “Usage” section.
3. Add the certificate to trusted ones.
   1. For IOS devices, open the following:  Settings → Main → About the device → Trusted certificates. Mark the installed certificate as trusted in the “Trust the root certificates completely”.
4. For Android devices, open the following: Settings → Security and display lock → Encryption and accounts
   1. Make sure that the certificate is successfully added to “User accounts” section.
   2. Make sure that the certificate is successfully added to “Trusted user certificates” section.

Installation of application

1. Download the Indeed AirKey application and give it permission to send notifications.
   1. IOS - https://itunes.apple.com/ru/app/indeed-airkey/id942443504
   2. Android - https://play.google.com/store/apps/details?id=com.indeed_id.airkey 
2. Specify the password to log in to application.
3. Click “+” icon to add a key in the “Keys” window.
4. Give the application a permission to use camera and scan the QR code.
5. Confirm creation of certificate request.
6. Confirm the request to install the certificate.
7. The key should appear in the “Keys” window if added correctly.
   1. To remove a key from the application, simply swipe the key to the left.
8. When trying to remove an AirKey authenticator for a user, the latter receives a push notification of registered key removal. The key is removed from the application after the operation is confirmed. Configuration:
   1. Open the Airkey server configuration file named Web.config (C:\inetpub\wwwroot\airkeycloud).

   2. Add the following code to the file (certificate configuration is required if SSL is used to connect to Indeed Airkey Cloud server):

      Code Block
      language yml title Exemple
      <trustedClientsSettings> <trustedClients> <add id="1" /> </trustedClients> </trustedClientsSettings>

      
      

   3. Create a string parameter named ClientId in the HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Indeed-ID\BSPs\AirKey section at the PC with AirKey provider installed. Specify the id from item 8.b as the value of the parameter.Image Modified
   4. After the changes are applied, the user should receive push notifications of key removal.