Login
    Contents x
    Getting started with OneSpan Authentication for ForgeRock
    • 29 Oct 2024
    • 3 Minutes to read
    • Dark
      Light
    Contents

    Getting started with OneSpan Authentication for ForgeRock

    • Updated on 29 Oct 2024
    • 3 Minutes to read
    • Dark
      Light
    Article summary

    Welcome to OneSpan Authentication for ForgeRock! This solution combines OneSpan authentication with the identity management and single sign-on (SSO) capabilities of the ForgeRock solution.

    With ForgeRock Access Management, you can create workflows that include OneSpan-specific tree nodes, and you can easily adapt these workflows as needed.

    Before you can start working with OneSpan Authentication for ForgeRock you need to complete the following steps:

    1. Install OneSpan Authentication for ForgeRock

    2. Create a sandbox account on the OneSpan Community Portal

    3. Install a mobile application

    Install OneSpan Authentication for ForgeRock

    To install OneSpan Authentication for ForgeRock

    1. Download the current OneSpan Authentication for ForgeRock version here.

    2. Copy OneSpan-Auth-Tree-Nodes-version.jar to the /web-container/webapps/openam/WEB-INF/lib folder where ForgeRock Access Management is deployed.

    3. Restart ForgeRock Access Management. The OneSpan trees and nodes are now available in Authentication > Trees.

    Create a sandbox account on the OneSpan Community Portal

    Before you begin

    The pre-requisite to access the OneSpan Cloud Authentication sandbox environment is to register and create your user account on the OneSpan Community Portal at https://community.onespan.com and then sign up for a sandbox user account. Based on the information you have entered, the portal creates your sandbox with an authentication environment.

    To register as a user on the OneSpan Community Portal

    1. In an Internet browser, navigate to https://community.onespan.com.

    2. Click Sign up.

      The email address you provide in the following step can only be used once to register in the OneSpan Community Portal!

    3. To register and enroll as a user on the OneSpan Community Portal, fill in the fields in the account creation form and click Sign up.

    By completing the registration, your profile is created on the OneSpan Community Portal. To access it, navigate to https://community.onespan.com and click the profile button in the upper right corner. On the My Account page you can administrate your account, i.e. set a new password for the OneSpan Community Portal or delete your portal account.

    Deleting your account will also delete all data associated with the account. This action cannot be reversed!

    Now that you have successfully created your Community Portal user account, you can sign up for a free sandbox account.

    To sign up for a developer sandbox account

    1. In the OneSpan Community Portal, switch to the OneSpan Cloud Authentication product page (via Products) and click Free Developer Sandbox.

    2. Fill in the fields in the account creation form and click Submit.

      The portal creates your sandbox environment with an authentication environment.

    You now have a sandbox user account.

    The OneSpan Community Portal also creates a dedicated instance of an authentication server domain with 10 authenticators available.

    The OneSpan Community Portal contains the links to the OneSpan Cloud Authentication service, the OneSpan Cloud Authentication demo, and the default credentials and a summary of the information you provided in the registration form.

    Install a mobile application

    Install a mobile application which serves as your authenticator. Choose one of the following options:

    Add a OneSpan configuration auxiliary service

    In ForgeRock Access Management, you need to create a realm-specific service named OneSpan Configuration, where you can specify your developer sandbox details.

    To create the auxiliary service

    1. In ForgeRock Access Management, navigate to REALMS > your_realm > Services.

    2. Add a new service and select OneSpan Configuration as the service type.

    3. Specify your developer sandbox details.

      You can find the environment in the URL of your sandbox account after the tenant name. For example, in https://tenant_name.sdb.tid.onespan.cloud), the environment is sdb (sandbox).

    4. Click Create.

    Additional tasks

    The workflow trees described in this guide use OneSpan sample nodes. You should not use these nodes in production environments, but replace them with your own node implementations.

    In particular, you need to replace the OneSpan Sample Store Command node with your own implementation in login and transaction workflows, before you roll out your solution to production.

    Next steps

    You are now ready to create and explore your OneSpan Authentication for ForgeRock workflows. You can reproduce the sample trees in the Workflow topics of this guide using one of the following methods:

    • Import the JSON files in the /sample folder through ForgeRock Access Management.

      Note that the /sample folder contains workflow samples specifically for OneSpan Cloud Authentication (OneSpan-XUI-Cloud-Authentication-*) and specifically for Intelligent Adaptive Authentication (OneSpan-XUI-Adapative-Authentication-*, OneSpan-XUI-Risk-Analytics-*).

    • Manually create the trees based on the design of the sample trees.

    Start with Scenario: Offline user registration and Digipass activation.

    Was this article helpful?
    What's Next
    Change password!
    Changing your password will log you out immediately. Use the new password to log back in.
    Change profile
    Success!
    First name must have atleast 2 characters. Numbers and special characters are not allowed.
    Last name must have atleast 1 characters. Numbers and special characters are not allowed.
    Enter a valid email
    Enter a valid password
    Your profile has been successfully updated.
    Logout
    ESC

    Ozzy, our interactive help assistant