Login
    Contenu x
    Set Up the 1-Step Challenge/Response Logon Page
    • 18 Nov 2024
    • 5 Minutes à lire
    • Sombre
      Lumière
    • PDF
    Contenu

    Set Up the 1-Step Challenge/Response Logon Page

    • Mis à jour le 18 Nov 2024
    • 5 Minutes à lire
    • Sombre
      Lumière
    • PDF
    The content is currently unavailable in French. You are viewing the default English version.
    Résumé de l’article

    This step is only required if 1-step Challenge/Response is being implemented.

    Implementing 1-step Challenge/Response logon requires a modification of the logon page used by Digipass Authentication for Remote Desktop Web Access. You can use the example logon page, which is located in %PROGRAMFILES%\OneSpan\Digipass Authentication for Remote Desktop Web Access\Templates\RDWeb (Windows Server version)\. A standard logon page for single sign-on is available in %PROGRAMFILES%\OneSpan\Digipass Authentication for Remote Desktop Web Access\Templates\RDWeb (Windows Server version)\SSO\.

    To use a logon page which has been customized for your company—e.g. colors and graphics—follow the instructions in Modify the custom logon page.

    To configure the authentication server

    • Enable 1-step Challenge/Response in the policy for the Digipass Authentication for Remote Desktop Web Access client component. For more information about the policy settings required for 1-step Challenge/Response, see Policy.

    To configure the Digipass Authentication Module

    • Enable 1-step Challenge/Response in the Digipass Authentication for Remote Desktop Web Access Configuration Center. You can do so for the main website, or for a dedicated website only for 1-step Challenge/Response logons.

    To configure the logon page (without single sign-on)

    1. Back up the existing logon page, i.e. RDWeb\Pages\en-US\login.aspx.

    2. To use the default logon page supplied with Digipass Authentication for Remote Desktop Web Access, copy the logon page from %PROGRAMFILES%\OneSpan\Digipass Authentication for Remote Desktop Web Access\Templates\RDWeb (Windows Server version\login.aspx to %WINDIR%\web\RDWeb\Pages\en-US\login.aspx.

      -OR-

      Modify the existing page with custom code.

      Modifying the existing page with custom OneSpan code should only be used as an alternative if copying over the templates does not work. This might be the case because the logon page was modified by Microsoft, e.g. with a patch. In that case, you need to modify the page manually: compare the template with the original file and merge the Digipass sections into the original file.

    To configure the logon page (with single sign-on)

    1. Back up the existing logon page, i.e. RDWeb\Pages\en-US\login.aspx.

    2. To use the default logon page supplied with Digipass Authentication for Remote Desktop Web Access, copy the logon page from %PROGRAMFILES%\OneSpan\Digipass Authentication for Remote Desktop Web Access\Templates\RDWeb (Windows Server version\SSO\login.aspx to %WINDIR%\web\RDWeb\Pages\en-US\login.aspx.

      -OR-

      Modify the existing page with custom code.

      Modifying the existing page with custom OneSpan code should only be used as an alternative if copying over the templates does not work. This might be the case because the logon page was modified by Microsoft, e.g. with a patch. In that case, you need to modify the page manually: compare the template with the original file and merge the Digipass sections into the original file.

    3. Configure single sign-on (see Digipass Authentication for Remote Desktop Web Access with single sign-on).

    Modify the custom logon page

    If your current logon page is not the standard Remote Desktop Web Access logon page, you may need to modify it rather than replace it with the logon page provided with Digipass Authentication for Remote Desktop Web Access.

    To modify the custom logon page for 1-step Challenge/Response (without single sign-on)

    1. Back up the existing logon page, i.e. RDWeb\Pages\en-US\login.aspx.

    2. Open %PROGRAMFILES%\OneSpan\Digipass Authentication for Remote Desktop Web Access\Templates\RDWeb (Windows Server version)\login.aspx.

    3. Copy the following piece of code to the appropriate location in your custom logon file:

      <!-- DIGIPASS Authentication for RDWeb Forms modifications : START -->
<!-- The following is required for one-step-challenge response -->
<%
System.String VascoChallenge = Request.ServerVariables["HTTP_VASCO_CHALLENGE"];
System.String VascoState = Request.ServerVariables["HTTP_VASCO_STATE"];
if (!System.String.IsNullOrEmpty(VascoState) && !System.String.IsNullOrEmpty(VascoChallenge)) {
%>
<tr>
  <td>
    <table width="300" border="0" cellpadding="0" cellspacing="0">
      <tr>
        <td width="130" align="right">Challenge:</td>
        <td width="7"/>
        <td align="right">
          <label>
            <input name="challenge" type="text" class="textInputField" size="25" readonly="true" value="<%= VascoChallenge %>" />
          </label>
        </td>
      </tr>
    </table>
  </td>
</tr>
<tr>
  <td height="7"/>
</tr>
<input name="DPExtState" type="hidden" value="<%= VascoState %>"/>
<%
}
%>
<!-- DIGIPASS Authentication for RDWeb Forms modifications : END -->

      Be careful to insert the code to the correct location in the file. Refer to the example file delivered with Digipass Authentication for Remote Desktop Web Access to find out where the custom code needs to go in your custom logon page.

    4. Save and close the custom logon file.

    To modify the custom logon page for 1-step Challenge/Response (with single sign-on)

    1. Back up the existing logon page, i.e. RDWeb\Pages\en-US\login.aspx.

    2. Open %PROGRAMFILES%\OneSpan\Digipass Authentication for Remote Desktop Web Access\Templates\RDWeb (Windows Server version)\SSO\login.aspx.

    3. Copy the following pieces of code to the appropriate location in your custom logon file:

      <!-- DIGIPASS Authentication for RDWeb Forms modifications : START -->
<!-- The following code is required for SSO -->
<%
if (Request.ServerVariables["HTTP_VASCO_SSO_ENABLED"] != null)
{
%>
<script language="javascript" type="text/javascript">
  var g_bUseVascoSSO = true;
</script>
<%
}
%>
<!-- DIGIPASS Authentication for RDWeb Forms modifications : END -->

      <!-- DIGIPASS Authentication for RDWeb Forms modifications : START -->
<!-- The following code is required for SSO -->
<script language="JavaScript">
function IsMsRdpClientShellSupported() {
  try {
    var objClientShell = new ActiveXObject("MsRdpWebAccess.MsRdpClientShell");
    return true;
  } catch (objException) {
    return false;
  }
}

function GetMsRdpWorkspaceWrapperCtrlDllName() {
  if (window.navigator.cpuClass == "x86") {
    return "DIGIPASS_MsRdpWebAccessXMT32.dll";
  } else if (window.navigator.cpuClass == "x64") {
    return "DIGIPASS_MsRdpWebAccessXMT64.dll";
  }
  return null;
}

function WriteMsRdpWorkspaceWrapperCtrlObject() {
  var strDllName = GetMsRdpWorkspaceWrapperCtrlDllName();
  if (strDllName != null) {
    document.write(
      "<OBJECT ID=\"DIGIPASS_MsRdpWebAccessX.MsRdpWorkspaceWrapperCtrl\" CLASSID=\"CLSID:954CC0FF-5085-46BF-8463-BFBFD70151C0\" CODEBASE=\"" + strDllName + "\"></OBJECT>"
    );
  } else {
    alert("Failed to determine browser bitness! Please use the recommended version of Internet Explorer.");
  }

  if (IsMsRdpClientShellSupported()) {
    WriteMsRdpWorkspaceWrapperCtrlObject();
  }
}
</script>
<!-- DIGIPASS Authentication for RDWeb Forms modifications : END -->

      <!-- DIGIPASS Authentication for RDWeb Forms modifications : START -->
<!-- The following is required for one-step-challenge response -->
<%
System.String VascoChallenge = Request.ServerVariables["HTTP_VASCO_CHALLENGE"];
System.String VascoState = Request.ServerVariables["HTTP_VASCO_STATE"];
if (!System.String.IsNullOrEmpty(VascoState) && !System.String.IsNullOrEmpty(VascoChallenge)) {
%>
<tr>
  <td>
    <table width="300" border="0" cellpadding="0" cellspacing="0">
      <tr>
        <td width="130" align="right">Challenge:</td>
        <td width="7"/>
        <td align="right">
          <label>
            <input name="challenge" type="text" class="textInputField" size="25" readonly="true" value="<%= VascoChallenge %>" />
          </label>
        </td>
      </tr>
    </table>
  </td>
</tr>
<tr>
  <td height="7"/>
</tr>
<input name="DPExtState" type="hidden" value="<%= VascoState %>"/>
<%
}
%>
<!-- DIGIPASS Authentication for RDWeb Forms modifications : END -->

      Be careful to insert the code to the correct location in the file. Refer to the example file delivered with Digipass Authentication for Remote Desktop Web Access to find out where the custom code needs to go in your custom logon page.

    4. Save and close the custom logon file.

    5. Configure single sign-on (see Digipass Authentication for Remote Desktop Web Access with single sign-on).

    Cet article vous a-t-il été utile ?
    What's Next
    Change password!
    Changing your password will log you out immediately. Use the new password to log back in.
    Change profile
    Success!
    First name must have atleast 2 characters. Numbers and special characters are not allowed.
    Last name must have atleast 1 characters. Numbers and special characters are not allowed.
    Enter a valid email
    Enter a valid password
    Your profile has been successfully updated.
    Logout
    ESC

    Ozzy, facilitant la découverte de connaissances grâce à l’intelligence conversationnelle