- 08 Jan 2025
- 2 Minutes à lire
- SombreLumière
- PDF
Configuring Policies For Virtual Mobile Authenticator
- Mis à jour le 08 Jan 2025
- 2 Minutes à lire
- SombreLumière
- PDF
After configuring Message Delivery Component (MDC) and OneSpan Authentication Server for Virtual Mobile Authenticator, you need to set up the policies accordingly. The following procedures describe how to set up primary Virtual Mobile Authenticator and backup Virtual Mobile Authenticator. For information about configuring virtual signatures, see Configuring policies for virtual signatures.
It is also possible to configure user-specific policy settings for primary Virtual Mobile Authenticator, backup Virtual Mobile Authenticator, and virtual signatures. These settings will override those set by the effective policy (see User-specific authentication policy overrides).
To configure the primary Virtual Mobile Authenticator policy
Log on to the Administration Web Interface.
- Select POLICIES > List.
- Select the policy where you want to enable the use of primary Virtual Mobile Authenticator.
- Switch to the Virtual DIGIPASS tab.
- Click Edit.
- Select a Virtual DIGIPASS Delivery Method: Email, SMS, voice, or a combination thereof.
- Specify the gateway definition to use. For more information about gateway definitions, see Gateway definitions.
Select one of the following options from the Request Method list:
- Keyword. The users enter the request keyword into the password field.
- Password. The users enter their static password only into the password field.
- KeywordPassword. The users enter the request keyword, followed by their static password, into the password field.
- PasswordKeyword. The user enter their static password, followed by the request keyword, into the password field.
- KeywordOnly. The users enter their Request Keyword only.
If you have selected an option that includes the use of a request keyword, type it in the Request Keyword field.
- Click Save.
To configure the backup Virtual Mobile Authenticator policy
Log on to the Administration Web Interface.
- Select POLICIES > List.
- Select the policy where you want to enable the use of backup Virtual Mobile Authenticator.
- Switch to the Virtual DIGIPASS tab.
- Click Edit.
- Select a Virtual DIGIPASS Delivery Method: Email or SMS.
Configure backup Virtual Mobile Authenticator by selecting from the BVDP Mode list:
- Yes – Permitted. The use of backup Virtual Mobile Authenticator is permitted, but not mandatory. The time limit is not applicable when using this option, but the max. uses/user limit is.
- Yes – Time Limited. The use of backup Virtual Mobile Authenticator is permitted, but not mandatory. Both the time limit and the max. uses/user limit will be effective.
- Yes – Required. The use of backup Virtual Mobile Authenticator is mandatory. The time limit is not applicable when using this option, but the max. uses/user limit is.
If required, enter a maximum number of uses. This will be calculated for each user who uses backup Virtual Mobile Authenticator.
- Click Save.
Once you've configured primary Virtual Mobile Authenticator and backup Virtual Mobile Authenticator, respectively, you should test your setup.
To test Virtual Mobile Authenticator
Log on to the Administration Web Interface.
- Select DIGIPASS > List.
- Click on the Virtual Mobile Authenticator record to be tested.
Switch to the Application Type tab and do the following:
- To test primary Virtual Mobile Authenticator, click Test VDP.
- To test backup Virtual Mobile Authenticator, click Test BVDP.
- Select a Virtual DIGIPASS Delivery Method: Email or SMS.
- Enter the mobile number or email address to send the test OTP to.
Click Generate.
The Administration Web Interface will attempt to send an OTP to the MDC service, which will attempt to forward it to the configured SMS gateway or mail server. The result will be displayed.
If the OTP was received by the requested method, type it in the OTP box and click Verify.
The verification result will be displayed.
Once the policy settings for either primary Virtual Mobile Authenticator or backup Virtual Mobile Authenticator are configured, you can edit the Virtual Mobile Authenticator message settings using the Administration Web Interface (via SERVERS > Global Configuration > Virtual DIGIPASS).