Embedded MariaDB database

When opting for a basic installation, an embedded MariaDB database is automatically installed with OneSpan Authentication Server.

If your organization is impacted by the General Data Protection Regulation (GDPR), ensure that during installation, when prompted to use encryption by the OneSpan Authentication Server Installation Wizard, to select Yes. If you select No, you must manually encrypt the database store and database connections to be GDPR-compliant.

For more information about GDPR, refer to the OneSpan Authentication Server General Data Protection Regulation Compliance Guide.

Service accounts

The embedded MariaDB database server is installed as a service (Windows) or daemon (Linux), respectively. The service account details differ on Windows and Linux.

Windows

The VASCO MariaDB service runs as the local Network Service account. This is a predefined local account with minimum privileges on the local computer.

Linux

On Linux, a mysql user account is created. This daemon user account is assigned the correct permissions to run the mysql daemon.

Administrator accounts

When the embedded database server is installed, two database accounts are created.

1. A superuser account that has all privileges throughout all databases:

   User name: root

   Password: digipassword

2. A database administrator account:

   User name: digipass

   Password: digipassword

   This account has full administration and access privileges to the OneSpan Authentication Server database (Identikey Server, by default). It is used by OneSpan Authentication Server to connect to the database. If you use a SQL or database administration tool to connect to the database, you can use this account.

For security reasons you should change the default passwords of these database accounts after the installation!