5.2.3 Configure Methods
Perform the following steps to configure the Password and SMS OTP methods:
-
Click on the Advanced Authentication Administration portal.
-
Click the icon
corresponding to the U2F method. -
Perform the following steps to configure the U2F method:
-
Set to to enable validation of the attestation certificate.
-
Select the attestation certificate:
-
To use a default certificate, click .
-
To use a custom certificate instead of predefined device manufacturer certificate, perform the following steps:
-
Click
next to the default attestation certificate to remove the certificate. -
Click to add a custom certificate.
-
Click and select the custom certificate and click .
The certificate must be in the PEM format.
-
-
-
Click .
-
-
Configure the SMS OTP method.
-
Click the Edit icon
corresponding to SMS OTP method. -
Specify the following details to configure SMS OTP method:
Parameter
Description
OTP Period
The lifetime of an OTP in seconds. The default value is 120 seconds.
OTP format
The number of digits in the OTP. The default value is 6.
Body
The text in the SMS that is sent to the user. The following structure describes the text in the OTP:
-
{user}: Name of the user.{endpoint}: Device the user is authenticating to.{event}: Name of the event where the user is trying to authenticate to.
-
{otp}: One-Time Password.
Allow overriding phone number
Set this option to to prevent users to specify a different phone number during the enrollment. The option is set to ON by default.
Allow user enrollment without a phone
Set this option to to ensure that a user does not enroll the SMS OTP authenticator without a phone. The user is prompted with an error message that you can specify in Error message.Set this option to to allow the user to enroll the SMS OTP authenticator without a phone.
-
-
Click .
-
-
Continue with Create a Chain.