Advanced Authentication Service › Getting Started with Advanced Authentication › Advanced Authentication Flows › Advanced Authentication Flows › ArcotID OTP-Based Flows › ArcotID OTP Only Flow
ArcotID OTP Only Flow
This section lists the steps for ArcotID OTP authentication.
Note: For detailed information about the back-end operations that take place when an end user tries to access a protected resource, see How Advanced Authentication Flows Work.
Prerequisites:
This flow is based on the following configurations:
- You have enabled the ArcotID OTP credential in the tenant console and configured the ArcotID OTP Only flow.
- You have configured the Credential Handling Service to protect the resource realm with the CA SiteMinder authentication scheme corresponding to the ArcotID OTP Only flow.
- The end user’s smart phone or system has the ArcotID OTP application installed and the ArcotID OTP credential is provisioned to the phone or system.
The Flow:
- In a browser window, the end user attempts to access a protected resource.
- On the login page, the end user is prompted for their user name and OTP.
- The end user accesses the ArcotID OTP application installed on their smart phone or system, authenticates to it with their PIN, and then generates an OTP.
- The end user then returns to the login page in the browser, enters the user name and OTP, and clicks Submit.
- The Advanced Authentication server verifies the OTP.
- If OTP verification is successful, then the end user is granted access the resource.
Copyright © 2013 CA.
All rights reserved.
|
|