Login
    Contenu x
    getSecureChallenge Operation
    • 11 Dec 2024
    • 1 Minute à lire
    • Sombre
      Lumière
    • PDF
    Contenu

    getSecureChallenge Operation

    • Mis à jour le 11 Dec 2024
    • 1 Minute à lire
    • Sombre
      Lumière
    • PDF
    The content is currently unavailable in French. You are viewing the default English version.
    Résumé de l’article

    The getSecureChallenge operation enables a user to generate a request message, which can be used to initiate an authentication process using Secure Channel.

    getSecureChallenge can send two types of requests to OneSpan Authentication Server:

    1. A request that includes a challenge message and, optionally, a transaction title (which will be used to generate a request body and the request message).
    2. A request that includes a custom request body (which will be transparently used to generate the request message).

    At a minimum, the getSecureChallenge operation requires the following set of authentication field attributes to perform this operation:

    • CREDFLD_COMPONENT_TYPE
    • CREDFLD_USERID

    • CREDFLD_CHALLENGE_MESSAGE, optionally with a CREDFLD_TRANSACTION_TITLE authentication field attribute.

      -OR-

      CREDFLD_REQUEST_BODY. For more information, see getSecureChallenge SOAP request structure.

    By default, OneSpan Authentication Server uses the first applicable authenticator application that is allowed by the effective policy. If you need to use a specific authenticator application for the Secure Channel authentication process, you can specify it by using one of the following attributes when you call the getSecureChallenge operation:

    • CREDFLD_CRYPTO_APP_INDEX
    • CREDFLD_CRYPTO_APP_NAME

    The specified authenticator application must be allowed by the effective policy. Any subsequent call of authUser related to the generated request message will automatically use the specified authenticator application.

    If you really need to specify the authenticator application, we recommend to use CREDFLD_CRYPTO_APP_NAME whenever possible, because it is more reliable. The difference is that the application name is explicitly specified in the DIGIPASS export file (DPX), whereas the application index is dynamically created during the DPX import process based on the authenticator application order in the DPX.

    For more information about the required and optional attributes for this command, see SOAP authentication.

    Cet article vous a-t-il été utile ?
    What's Next
    Change password!
    Changing your password will log you out immediately. Use the new password to log back in.
    Change profile
    Success!
    First name must have atleast 2 characters. Numbers and special characters are not allowed.
    Last name must have atleast 1 characters. Numbers and special characters are not allowed.
    Enter a valid email
    Enter a valid password
    Your profile has been successfully updated.
    Logout
    ESC

    Ozzy, facilitant la découverte de connaissances grâce à l’intelligence conversationnelle