I'm using privacyIDEA 2.17 installed on a
virtual machine (under ESXi 5.5) running Ubuntu 16.04.
The software tokens work perfectly: connecting to a Cisco firewall using AnyConnect and querying the privacy IDEA server using freeRADIUS.
Now, I wanted to try the hardware options. Cornelius has a nice video on YouTube showing how to enroll a U2F USB key
My understanding is the privacyIDEA runs in this demonstration on a physical laptop, i.e. NOT a virtual machine.
Here is my question: how do I accomplish the same with privacyIDEA running virtual?
I believe the problem is passing the U2F key to the VM.
I di two things trying to accomplish this:
- installed the 70-u2f.rules file
- edited the VMX file of the VM adding usb.generic.allowHID = "TRUE" at the end.
I can see the U2F key attached to the host. I can pass it to the VM.
But when trying to enroll the key - default realm, default resolver, /etc/passwd account - I get a popup that says
'NoneType' object has no attribute 'strip'
Anybody tried this? Made it work? Any pointers.
Thanks.