Documentation

 

 

Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Panel
borderColor#444544
bgColorwhite
titleColorwhite
titleBGColor#444544
titlePrerequisites

1. Ensure the iOS or Android version is supported by checking here

2. Download and install the SecureAuth mobile app on the device(s) to be enrolled

3. Configure the OATH Provisioning Realm / App Enrollment Realm in the SecureAuth IdP Web Admin for end-users to register their device(s) for OATH OTP / Multi-Factor App Enrollment

NOTE: The name of the provisioning / enrollment realm has changed since the release of SecureAuth IdP version 8.0 – as of version 9.0.x, the realm is called Multi-Factor App Enrollment Realm which is the name used throughout this document

4. Configure SecureAuth IdP realm(s) in which OATH OTPs are used for Multi-Factor Authentication

Panel
borderColor#145570
bgColorwhite
titleColorwhite
titleBGColor#145570
titleSecureAuth IdP Configuration Steps

1. If using SecureAuth IdP version 8.0, configure OATH settings starting on the Registration Methods tab

If using SecureAuth IdP versions 8.1 to 9.x, configure OATH settings starting on the Post Authentication tab

 

Localtab Group
Localtab
activetrue
titleVersion 8.0
Panel
borderColor#126591
bgColorwhite
titleColorwhite
titleBGColor#126591
titleRegistration Configuration
Section
Column
width50%

Column
width50%

 

2. Scroll down to the OATH Settings section

3. If setting Require OATH PIN to True, optionally set values from the dropdowns for

a. Wipe Provisioned Data after: specify the maximum number of Failed Unlock Attempt(s) permitted, after which provisioned data will be wiped from the app

b. Screen Lockout after: specify the number of Second(s) after which the app screen will lock out the end-user

UI Text Box
typewarning

Click Save once the configuration has been made before leaving the Registration Methods page to avoid losing changes

Localtab
titleVersion 8.1
Panel
borderColor#126591
bgColorwhite
titleColorwhite
titleBGColor#126591
titlePost Authentication
Section
Column
width50%

Column
width50%

 

2. Select OATH Provisioning from the Authenticated User Redirect dropdown

Panel
borderColor#3e7fa0
bgColorwhite
titleColorwhite
titleBGColor#3e7fa0
titleOATH
Section
Column
width50%

Column
width50%

 

3. In the Desktop / Mobile App section, if setting Require OATH PIN to True, optionally set values from the dropdowns for

a. Wipe Provisioned Data after: specify the maximum number of Failed PIN Attempt(s) permitted, after which provisioned data will be wiped from the app

b. Show PIN screen after: specify the number of Second(s) after which the PIN screen will appear

UI Text Box
typewarning

Click Save once the configuration has been made before leaving the Post Authentication page to avoid losing changes

Localtab
titleVersion 8.2
Panel
borderColor#126591
bgColorwhite
titleColorwhite
titleBGColor#126591
titlePost Authentication
Section
Column
width50%

Column
width50%

 

2. Select SecureAuth App Enrollment from the Authenticated User Redirect dropdown

Panel
borderColor#3e7fa0
bgColorwhite
titleColorwhite
titleBGColor#3e7fa0
titleSecureAuth App Enrollment
Section
Column
width50%

Column
width50%

 

3. In the Security Options section, if setting Require OATH PIN to True, optionally set values from the dropdowns for

a. Wipe Provisioned Data after: specify the maximum number of Failed PIN Attempt(s) permitted, after which provisioned data will be wiped from the app

b. Show PIN screen after: specify the number of Second(s) after which the PIN screen will appear

UI Text Box
typewarning

Click Save once the configuration has been made before leaving the Post Authentication page to avoid losing changes

Localtab
titleVersion 9.0.x
Panel
borderColor#126591
bgColorwhite
titleColorwhite
titleBGColor#126591
titlePost Authentication
Section
Column
width50%

Column
width50%

 

2. Select Multi-Factor App Enrollment - URL from the Authenticated User Redirect dropdown

Panel
borderColor#3e7fa0
bgColorwhite
titleColorwhite
titleBGColor#3e7fa0
titleMulti-Factor App Enrollment
Section
Column
width50%

Column
width50%

 

3. In the Security Options section, if setting Require OATH PIN to True, optionally set values from the dropdowns for

a. Wipe Provisioned Data after: specify the maximum number of Failed PIN Attempt(s) permitted, after which provisioned data will be wiped from the app

b. Show PIN screen after: specify the number of Second(s) after which the PIN screen will appear

UI Text Box
typewarning

Click Save once the configuration has been made before leaving the Post Authentication page to avoid losing changes

...