Let us assume administrator of Reltic Data wants to authenticate users based on two factors, LDAP Password and Fingerprint for accessing the Self-Service Portal.
This section explains the prerequisites, sequence of API calls, and sample request details to achieve this.
Ensure to gather the following details before you execute any API call:
{{hostname}} indicates Advanced Authentication server IP address or host name.
{{endpoint_id}} indicates the unique device ID where the user authenticates.
endpoint_secret_hash indicates the value used to hide the plain text hash an endpoint secret and id.
salt indicates the technique required to hash the password.
event_name indicates the event name that is configured on the Administration Portal.
endpoint_session_id unique session ID that is generated when the endpoint session is created.
logon_process_id indicates the process ID to the given event. This is generated when you attempt to login to the event.
Ensure Advanced Authentication Device Service is installed on the system from where you initiate API calls.
For more information, see Installing and Upgrading Device Service.
Ensure that the fingerprint reader mode is set appropriately based on the reader in use.
For more information, see Fingerprint Settings.
It is required to create a chain with LDAP Password and Fingerprint methods then associate the chain to the Self-Service Portal event.
To authenticate users with the LDAP Password and Fingerprint methods to the Authenticators Management or Self-Service Portal, the administrator need to execute APIs in the following sequence: