Configure authentication

This section provides a practical introduction to the authentication framework by creating a simple example which demonstrates have the various components fit together. The example will evolve as described below:

  • Configure password based authentication
  • Directory based authentication
  • Configure MFA using SMS/E-mail based OTP
  • Step-up authentication

Content provider

As you can see from the authentication framework overview page, authentication configuration is linked to a content provider.

All OpenIAM deployments must have at least one Content provider. When you installed OpenIAM, you created a content provider. Its possible that your deployment may have more than one content provider.

Before proceeding, ensure that you have a content provider for the domain that you want to secure.

Authentication Policy

Authentication policies are used to define general parameters to control authentication behavior. These include parameters such as:

  • Failed authentication count
  • Auto unlock
  • Session token life.

Define a authentication policy as described in the Authentication policy section.