First Step Authentication

In the authentication first step, choose a required authentication type from the drop-down list and click ADD.

Note: Once the first step is completed for the first factor authentication, and if you do not want to go for the second factor authentication in the second step, then click SAVE to add the new authentication journey to the authentication journey list.
Note: You can add multiple authentication types in the first step. Also, if you want to remove the already added authentication type, then click REMOVE.

The authentication journey creation with each individual authentication type is mentioned below.

Creating Authentication Journey with Static Password

  1. Choose an authentication type Static Password from the drop-down list and click ADD.

  2. Enter the below details and click CONTINUE for the authentication second step.

    Note: For details of these below shown fields, refer to Fields used in the Authentication Journey.
    Note: Select the necessary check boxes shown below to allow the user to reset and/or change the static password.

Creating Authentication Journey with Push Authentication

  1. Choose an authentication type Push Authentication from the drop-down list and click ADD.

  2. Enter the below details and click CONTINUE for the authentication second step.

    Note: For details of these below shown fields, refer to Fields used in the Authentication Journey.

Creating Authentication Journey with One-Time Password

  1. Choose an authentication type One-Time Password from the drop-down list and click ADD.

  2. Enter the below details and click CONTINUE for the authentication second step.

    Note: For details of these below shown fields, refer to Fields used in the Authentication Journey.

Creating Authentication Journey with Activation Code

  1. Choose an authentication type Activation Code from the drop-down list and click ADD.

  2. Enter the below field details.

    Note: For details of these below shown fields, refer to Fields used in the Authentication Journey.

  3. Select SMS and/or Email to send the OTP along with the message to the end user.

    Select Enable HTML for the use of HTML format contents through Email if you want to send formatted messages instead of plain text.

  4. Click CONTINUE for the authentication second step.

    Note:

    If only Activation Code is chosen in the first step, then in the second step, the One-Time Password configuration appears automatically with disabled fields except Number of attempts field, which can editable based on the requirement.

    If the Activation Code is chosen in the first step along with other authentication factors, then in the second step, you can configure all the authenticator factors except the Activation Code.

Creating Authentication Journey with Out of Band

  1. Choose an authentication type Out of Band from the drop-down list and click ADD.

  2. Enter the below field details.

    Note: For details of these below shown fields, refer to Fields used in the Authentication Journey.

  3. Select SMS and/or Email to send the OTP along with the message to the end user.

    Select Enable HTML for the use of HTML format contents through Email if you want to send formatted messages instead of plain text.

  4. Click CONTINUE for the authentication second step.

Creating Authentication Journey with Corporate Directory Password

  1. Choose an authentication type Corporate Directory Password from the drop-down list and click ADD.

  2. Enter the below details and click CONTINUE for the authentication second step.

    Note: For details of these below shown fields, refer to Fields used in the Authentication Journey.

Creating Authentication Journey with PKI

  1. Choose an authentication type PKI from the drop-down list and click ADD.

  2. Enter the below details and click CONTINUE for the authentication second step.

    Note: For details of these below shown fields, refer to Fields used in the Authentication Journey.

Creating Authentication Journey with FIDO Authenticator

  1. Choose an authentication type FIDO Authenticator from the drop-down list and click ADD.

    Note: In an authentication journey, you can choose FIDO Authenticator as either first or second factor authentication, not both.
    Note: It is recommended that when choosing FIDO Authenticator as the first factor, you enable the enrollment protection option to prevent unauthenticated FIDO enrollment.

  2. Enter the below details and click CONTINUE for the authentication second step.

    Note: For details of these below shown fields, refer to Fields used in the Authentication Journey.

Note: Once the authentication journey is created, make sure that it has to be mapped to an application. Refer to OpenID Federated Application section for mapping.