ActivID CMS User Portal Authentication Methods
The authentication methods to the portal vary, depending on the service requested by users in the ActivID CMS User Portal. The following table describes the different authentication methods that can be set for logging on to the ActivID CMS User Portal for different services.
|
Service Required by Users in ActivID CMS User Portal |
Corresponding Authentication Method |
|---|---|
|
Device initialization (initial issuance) |
Initial password(1) or LDAP password(2) or security questions |
|
Device initialization (replacement issuance) |
Initial password or LDAP password or security questions |
|
Device unlock (self online unlock) |
LDAP password or security questions |
|
Device unlock (assisted online unlock) |
Emergency password The emergency password temporarily replaces an OTP (one-time password) where a user has either forgotten or lost his or her device. or LDAP password or security questions |
|
Device incident notification (device not available) |
LDAP password or security questions |
|
PIN reset |
LDAP password or security questions |
|
Change PIN / change answers to security questions |
Smart card (Physical and VSC) |
|
Device update |
Smart card (Physical and VSC) |
|
Device re-issuance |
Smart card (Physical and VSC) |
|
Download escrowed certificates(3) |
Smart card (Physical and VSC) |
|
Issuance of mobile credentials (mobile app certificates) |
Smart card (Physical and VSC) |
(1) The initial password is defined by the ActivID CMS operator during the device binding and is communicated to the user, along with the device to be personalized.
(2) The LDAP Lightweight Directory Access Protocol password is the user’s primary directory password.
(3) Only supported for Microsoft CA and OpenTrust PKI certificates.
