This section provides a practical introduction to the authentication framework by creating a simple example which demonstrates have the various components fit together. The example will evolve as described below:
- Configure password based authentication
- Directory based authentication
- Configure MFA using SMS/E-mail based OTP
- Step-up authentication
As you can see from the authentication framework overview page, authentication configuration is linked to a content provider.
All OpenIAM deployments must have at least one
Content provider. When you installed OpenIAM, you created a content provider. Its possible that your deployment may have more than one content provider.
Before proceeding, ensure that you have a content provider for the domain that you want to secure.
Authentication policies are used to define general parameters to control authentication behavior. These include parameters such as:
- Failed authentication count
- Auto unlock
- Session token life.
Define a authentication policy as described in the Authentication policy section.