Set Up Control Center

Overview

This page describes how to install and configure Workforce Access on a user's macOS workstation to leverage passwordless authentication using the HYPR Mobile App.

Quick Start

Part 1: Configure RP Application in the Control Center

Step 1: Login to the HYPR Control Center
Step 2: Create a new RP Application 
Step 3: Configure Workstation Settings like in the screenshots below

Step 4: Enable Offline Mode

📘

Available with Version 6.2.0+

This step is optional. If this is enabled, users will be able to get Offline Mode PINs to log in to the computer when no internet connection is available.

Step 5: Take a note of the RP Application name created, you will need to specify it later as the ApplicationId

Part 2: Obtain SSL Pinning Key

Option 1: Using the OpenSSL Tool

Step 1: Create a Bash script file with the code below

#! /bin/bash
​
if [ "$1" == "" ]; then
    echo "Usage: getpins.sh <hostname>"
    exit 1
fi
​
openssl s_client -servername $1 -connect $1:443 | openssl x509 -pubkey -noout | openssl pkey -pubin -outform der | openssl dgst -sha256 -binary | openssl enc -base64

Step 2: Grant file permissions

chmod +x ssl_pin.sh

Step 3: Execute the script with the RP URL (Control Center) specified 

echo | ./ssl_pin.sh demo.gethypr.com

Option 2: Using the https://www.ssllabs.com/

Step 1: Navigate to https://www.ssllabs.com/
Step 2: Click on the "Test your server" button

Step 3: Enter your Control Center URL (Relying Party URL)

Step 4: Select the IP address of your server if you have multiple clusters for this DNS address

Step 5: Copy the Pin SHA 2561 value so you can use it to configure the application in a later step