Set Up Control Center

Overview

This page describes how to install and configure Workforce Access on a user's macOS workstation to leverage passwordless authentication using the HYPR Mobile App.

Quick Start

Part 1: Configure RP Application in the Control Center

Step 1: Login to the HYPR Control Center
Step 2: Create a new RP Application 
Step 3: Configure Workstation Settings like in the screenshots below

1232

Step 4: Enable Offline Mode

📘

Available with Version 6.2.0+

This step is optional. If this is enabled, users will be able to get Offline Mode PINs to log in to the computer when no internet connection is available.

1252

Step 5: Take a note of the RP Application name created, you will need to specify it later as the ApplicationId

693

Part 2: Obtain SSL Pinning Key

Option 1: Using the OpenSSL Tool

Step 1: Create a Bash script file with the code below

#! /bin/bash
​
if [ "$1" == "" ]; then
    echo "Usage: getpins.sh <hostname>"
    exit 1
fi
​
openssl s_client -servername $1 -connect $1:443 | openssl x509 -pubkey -noout | openssl pkey -pubin -outform der | openssl dgst -sha256 -binary | openssl enc -base64

Step 2: Grant file permissions

chmod +x ssl_pin.sh

Step 3: Execute the script with the RP URL (Control Center) specified 

echo | ./ssl_pin.sh demo.gethypr.com

Option 2: Using the https://www.ssllabs.com/

Step 1: Navigate to https://www.ssllabs.com/
Step 2: Click on the "Test your server" button

2884

Step 3: Enter your Control Center URL (Relying Party URL)

2204

Step 4: Select the IP address of your server if you have multiple clusters for this DNS address

2214

Step 5: Copy the Pin SHA 2561 value so you can use it to configure the application in a later step

2248