Authentication

In this article:

Introduction

../_images/login-page.png

Here is provided simple login page. You can enable additional authenticators using properties.

2FA

Two Factory Authentication through sms code and One Time Password(OTP)

In order to enable it, you have to:

  1. Set appropriate property to true.

# enable/disable two factory authentication
2fa.enabled = false
  1. You need properly configured SmsService. Look at properties.

By default there are preconfigured properties but you can also do it by yourself:

  • Cookie lifetime

  • OTP length

  • OTP letters and numbers

../_images/user-edit-2fa.png

In user edit 2fa can be enabled/disabled for each users.

BankID

BankID – is an external swedish authenticator

To enable it you have to set appropriate property to true.

# bank id
cgi.enabled = true

By default there are preconfigured properties but you can also do it by yourself.

  • Metadata URL provider(cgi.metadata-url)

  • BankID user role name (cgi.user-role-name)

../_images/alternative-login-button.png ../_images/alternative-login-page.png

External Authenticator

Warning

You can have only one external authenticator!

To enable you have to set appropriate properties to “aad”.

ExternalAuthenticator=aad
ExternalUserAndRoleMapper=aad

To enable you have to set appropriate properties to “ldap”.

ExternalAuthenticator=ldap
ExternalUserAndRoleMapper=ldap