Skip to main content
Version: Axidian Privilege 2.10

TOTP Second Factor via Email Setup

This function allows you to receive the second factor via email. The email address is taken from account data in Active Directory.

If your server's OS is Windows, then go to the directory: C:\inetpub\wwwroot\pam\idp and edit the file appsettings.json.

If your server's OS is Linux, then go to the directory: /etc/axidian/axidian-privilege/idp and edit the file appsettings.json.

Find the section IdentitySettings and replace TOTP to EMAIL:

IdentitySettings Section
"IdentitySettings": {
    ...
    "SecondFaType": "TOTP", 
    ...
}
SMTP Section
"Smtp": {
    "Address": "PAM_SMTP_ADDRESS",
    "Port": 587,
    "SenderAddress": "PAM_SMTP_SENDER_ADDRESS",
    "Username": "PAM_SMTP_USERNAME",
    "Password": "",
    "EncryptionMethod": "TLS"
    "AllowedSslProtocols": "Tls12,Tls13"
}
  • Address — SMTP server address.
  • Port — SMTP server port.
  • SenderAddress — the address from which the email will be sent.
  • Username — login for authorization on the server.
  • Password — password for authorization on the server (encrypted).
  • EncryptionMethod — TLS supported only.
  • AllowedSslProtocols — supported TLS versions.