During authentication, when a user specifies the credential in the authentication page, the credential is first verified by AuthMinder Server, after which the user is authenticated.
The following workflow lists the steps for ArcotID PKI authentication:
Note: In case of other credentials, refer to chapter, "Authenticating Users" for details of methods to invoke.
Your application loads the ArcotID PKI Client and makes an explicit call to the getChallenge() function in ArcotIDAuth interface. See "ArcotID PKI Authentication" for more information on the API.
User specifies the user name and ArcotID PKI password to log in.
The ArcotID PKI Client signs the challenge.
Your application invokes the verifySignedChallenge() function in ArcotIDAuth interface to verify the challenge that is signed by using the ArcotID PKI password.
If the verifySignedChallenge() call was successful, then the authentication token is generated and the user is authenticated successfully.
See "Verifying the Authentication Tokens" for more information on the different tokens supported by AuthMinder.
The following figure illustrates the workflow for ArcotID PKI authentication process:
|
Copyright © 2013 CA.
All rights reserved.
|
|