Skip to main content

Basic Authentication Begin Site Configuration Guide


Use this guide to enable a SecureAuth IdP realm to utilize a Basic Authentication begin site.

At this begin site, SecureAuth IdP can consume a basic authentication from an application and extract the user ID and password from a Base 64 string in an authorization header. From there, the end-user follows the SecureAuth IdP workflow configured in the realm (e.g. Multi-Factor Authentication) without requiring to enter the user ID or password, and is asserted to the Post Authentication target.


1. Be able to send the authorization header with the user ID and password extractable

2. Create a New Realm or edit an existing realm to which Basic Authentication will be applied in the SecureAuth IdP Web Admin

3. Configure the following tabs in the Web Admin before configuring for Basic Authentication:

  • Overview – the description of the realm and SMTP connections must be defined

  • Data – an enterprise directory must be integrated with SecureAuth IdP

  • Workflow – the way in which users will access the target must be defined

  • Multi-Factor Methods – the Multi-Factor Authentication methods that will be used to access the target (if any) must be defined

  • Post Authentication – the target resource or post authentication action must be defined

  • Logs – the logs that will be enabled or disabled for this realm must be defined

SecureAuth IdP Configuration Steps



1. In the Custom Identity Consumer section, select Token from the Receive Token dropdown

2. Select True from the Require Begin Site dropdown

3. Select Basic Authentication from the Begin Site dropdown

4. BasicAuth.aspx auto-populates in the Begin Site URL field


Click Save once the configurations have been completed and before leaving the Workflow page to avoid losing changes