- 28 Oct 2024
- 1 Minute to read
- DarkLight
Use Case Scenario: Login
- Updated on 28 Oct 2024
- 1 Minute to read
- DarkLight
Involved OneSpan solutions:
Intelligent Adaptive Authentication
Workflow tree in Access Manager:
About this scenario
This scenario occurs after creating a new account on the MyBank page and simulates a login to the page without step-up authentication. It utilizes two different features of the OneSpan for ForgeRock Demo:
Login with single sign-on. After registration, if you do not sign out, any login attempt will use the current session cookie so that no step-up authentication is required.
Risk-based login with Intelligent Adaptive Authentication. If there is no active session after user registration, e.g. if you have logged out after the user registration, Intelligent Adaptive Authentication will assess the risk associated with a login attempt. Because the computer fingerprint is known, no step-up authentication is required.
Before you begin
Before you can begin this scenario, you must have completed Use case scenario: Registration.
Walkthrough: Login
To log in with single sign-on
After the user registration process has completed, click on the MyBank page logo to leave your Account page and return to the MyBank page.
Do not log out after the registration.
On the MyBank page, click Login.
The MyBank page uses the current session cookie to authenticate the user. Note that no further authentication is required.
To log in with Intelligent Adaptive Authentication
After the user registration process has completed, click Sign-out to leave your Account page and return to the MyBank page.
On the MyBank page, click Login.
There is no active session, so Intelligent Adaptive Authentication assesses the risk of this login request. Because the computer fingerprint is known, no further authentication is required.
To view the tree in Access Manager
From the ForgeRock Landing Service, open the Access Manager.
If required, log in with the credentials that are displayed when hovering over the Access Manager link on the ForgeRock Landing Service.
Click Top Level Realm.
Select Authentication > Trees from the sidebar menu.
Click OneSpanUserLoginTree and view the individual nodes of the workflow.
You can also modify the workflow by adding and connecting tree nodes as needed.
For a list of available OneSpan trees and nodes, see Overview of OneSpan authentication trees and nodes.
Next steps
After completing this scenario, you can continue with Use case scenario: Login step-up authentication.