We are rolling out Tessitura on the Go. Our IT department is having our users use an MI-Token that is generated on the mobile device. The problem is that it is quite cumbersome for our user to generate a token and then log-in to the VPN.
1. Is there a way to place authorization on the Application itself so not everyone with a Tessitura Log-in can access it.
2. Is anyone using the Tessitura on the Go without a VPN and just an SSL connection.
Thanks
Bob Taulty
92Y
We had started testing using Tessitura on the Go but we put it behind a cloud based WAF (Incapsula/Imperva) which allows us to use 2-factor authentication - the token can be sms, email of software token.
We haven't gone live with this yet but that is because of various other reasons.
The WAF is also the one we use to protect our Live and Test APIs and also some of our other sites.
Mark
Hi Mark,
I'm resurrecting this thread and am curious as to whether you went live with 2FA via your WAF for Tessitura on the Go access. We're looking into something similar as I'd like to avoid making TOTG available anywhere over the Internet with only Tessitura username/passwords as the doorkeeper.
Thanks!David
Must admit that project got sidelined for a bit.
I know we use this particular WAF in front of a lot of our other sites, so will check to see if we ever did turn on the 2FA on any of those.
Thank you Mark! If there is anyone else who happens to notice this thread who has implemented TOTG in their internally installed Tessitura environment, it would be great to hear from you. Thanks!