Previous Topic: ArcotID PKI Only FlowNext Topic: ArcotID PKI Roaming Flow

Advanced Authentication ServiceGetting Started with Advanced AuthenticationAdvanced Authentication FlowsAdvanced Authentication FlowsArcotID PKI-Based FlowsArcotID Mobile PKI Client Flow

ArcotID Mobile PKI Client Flow

Defines the flow of authentication with the ArcotID Mobile PKI client from the tenant administrator and the end user perspectives.

A tenant administrator configures ArcotID Mobile PKI as follows:

  1. The administrator logs in to the User Console, selects Advanced Authentication Types, Configure Credential Types, Configure Enabled Credentials, and Modify ArcotID Profile.
  2. The administrator selects the Use mobile client box and saves the changes.
  3. The administrator navigates to Configure Advanced Authentication Flow, Enabled Flow Types, Configure Flows, and selects ArcotID PKI only. The administrator can also enable a secondary authentication mechanism for the Mobile PKI client.
  4. The administrator creates and enrolls the user.
  5. The administrator instructs the user to download the application and authenticate.

An end user authenticates with ArcotID Mobile PKI as follows:

  1. The user opens the application store on their mobile device and searches for ArcotID PKI.
  2. The user installs the mobile application.
  3. From the mobile browser, the user accesses the protected resource and follows the on-screen authentication process.