Version 3.7 (August 2024)
- 03 Oct 2024
- 1 Minute to read
- Print
- DarkLight
- PDF
Version 3.7 (August 2024)
- Updated on 03 Oct 2024
- 1 Minute to read
- Print
- DarkLight
- PDF
Article summary
The latest update for Digipass Authentication for Windows Logon introduces a flexible UI layout for OTP credential providers, allowing users to define up to three separate credential fields on the Windows Logon screen. This customization includes options for label text, input length validation, and field behavior. If this feature is disabled, users must enter both the static password and OTP in a single field. Additionally, the update addresses two significant issues: one related to a missing correlation ID that hindered offline authentication data retrieval, and another where a one-time password (OTP) could be reused for offline authentication. Both issues have been resolved in this release. Furthermore, the transition to online documentation is underway, with plans to eliminate PDF documentation in future major releases of the software. The supported platform now includes Windows 11 2023 Update.
Did you find this summary helpful?
Thank you for your feedback
New features and enhancements
Flexible UI layout for OTP credential provider
The option to use separate credential fields on the Windows Logon screen has been enhanced. Instead of predefined credential fields for the static password and the OTP only, you can now freely define up to three separate credential fields and configure their look and behavior, including the label text, the optionality, and validation expressions to restrict the length of the input.
If this option is disabled (the default), the users need to type the static password and the OTP in the Password field. You can enable and configure this option via Group Policy.
Supported platforms and third-party products
Digipass Authentication for Windows Logon now supports the following products:
Operating systems
Windows 11 2023 Update (version 23H2)
Fixes and other updates
Issue OAS-22741 (Support case CS0149993): Missing correlation ID prevents offline authentication data retrieval
Description: Under some circumstances, the Digipass Authentication for Windows Logon client incorrectly uses an empty or missing correlation ID when it attempts to download offline authentication data (OAD). In that case, the client refuses to retrieve offline authentication data from the server. If no offline authentication data has been retrieved (either during the first logon or if the data was deleted on the server), subsequent authentication attempts can fail.
Affects: Digipass Authentication for Windows Logon 3.2–3.6
Status: This issue has been fixed.
Issue OAS-21606: OTP can be re-used for offline authentication (Authentication Provider)
Description: Under some circumstances, a one-time password (OTP) generated by a software authenticator can successfully be used more than once for offline authentication. OTP values generated by hardware authenticators are not affected.
Status: This issue has been fixed.
Deprecated components and features
PDF documentation (Deprecated)
You can view the user documentation of most OneSpan products online already at https://docs.onespan.com/docs/, and we plan to shift exclusively to online documentation.
This means that PDF documentation will be completely removed in future major releases of Digipass Authentication for Windows Logon (currently planned for 3.8).
Was this article helpful?