1. INTRODUCTION
The mPass authentication server is an OATH-compliant comprehensive solution for enabling multi-factor authentication for enterprise applications such as VPN Systems, Outlook Web Access, Active Directory Federation Services, Windows/Linux systems, or any in-house developed applications. mPass authentication server enables strong authentication via OATH-based one-time passwords (OTP) via SMS and Mobile apps.
1.1 Purpose
The purpose of this document is to help enterprise user administrators to install the mPass Windows agent to enable Two-factor authentication for Windows PCs/Servers.
2. APPLICATION OVERVIEW
The mPass Windows agent is a credential provider for Microsoft Windows Operating systems which enable Two Factor authentication via mobile app in addition to the default username and password. This agent will override the default credential provider which is available by default.
3. SUPPORTED OPERATING SYSTEMS
The mPass Windows agent can be installed on the following operating systems:
Type | Versions |
PC’s | Windows Vista/7/8/8.1/10 |
Servers | Windows Server 2008, 2012, 2016, 2019 |
4. PRE-REQUISITES
1. The target installation PC/Server should have a TCP/IP connection on port 80/443 to the mPass Server/to the load balancer if any.
2. The PC/Server should be joined to the Windows domain defined in mPass.
3. The user should belong to the Windows Domain of the PC/Server.
4. The user who will be logging/accessing the PC/Server should have downloaded the mPass mobile app from the app store and activated it.
5. WINDOWS AGENT INSTALLATION PROCESS
5.1 Windows agent installation steps
The first step is to double-click on the executable file (mPassWindows-version-x64.msi).
The welcome page will display for you like following.
Click Next.
Accept the license agreement, then click Next.
Following is a brief explanation of the fields in the above screen.
Field Name | Description |
mPass Server URL (mandatory) | The Service URL of the mPass Server hosted in your organization |
OTP free PC Unlocking Attempts | This parameter is applied during lock and unlock scenarios of the PC/Server. Eg: If the value is set to 5, after the first successful validation of OTP, and the user locks his PC/Server, the OTP will be not prompted till 5 locked attempts. |
Installation Mode | Online-The connection to mPass server should be available always, otherwise, the authentication will not proceed. Offline-The connection to the mPass server is required only once. |
MFA State | To install the agent in Enabled/Disbaled mode. |
Login Text | The text which is will visible on the Windows login screen. |
Click Next.
Click Install.
Click Finish.
Now the Windows agent is successfully installed on the machine.
You have to sign out from this machine and log in with the domain user.
Enter a One-Time Password from your mPass mobile app that is already installed on your mobile.
5.2 Windows agent Uninstallation steps.
After you log in with the domain user, find the executable file (mPassWindows-version-x64.msi).
Double-click on it, Welcome page will display for you.
Click Next.
Click the Remove button, then click Next.
Click Remove.
Click Finish.
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article