A user trying to access the web application protected by CA Strong Authentication can be authenticated using any of the out-of-the-box credentials supported by CA Strong Authentication.
In all the authentication mechanisms, the client is provided with an authentication token after every successful authentication. The token proves the client's authentication to the server and is valid for an interval and subject to re-authentication.
All password type credentials namely, password, OTP/Activation Code, CA Auth ID OTP, and OATH OTP Token are based on the single-step authentication model. The credentials are passed by the client to the user and the server verifies the user credentials.
The following figure illustrates the typical authentication workflow.
However, CA Auth ID and QnA are based on the challenge-response authentication model. These authentication mechanisms include multiple steps to authenticate users.
|
Copyright © 2014 CA Technologies.
All rights reserved.
|
|