Definition
The CoreOne Authentication Services supports different authentication methods (aka “Logon-methods”). These authentication methods can be specified per client and/or user and connected in series (MFA). This article describes the authentication methods currently available.
Authentication methods
The following authentication methods are available:
Method | Description |
---|---|
Password | Login with user name and password. The password is stored in encrypted form in the Meta Directory of the CoreOne Suite. |
TOT Passwort | Login with user name plus one-time password generated via a common RFC 6238-compliant authenticator. |
TOT Pin | Login with user name plus one-time pin which is generated via a common authenticator (e.g. Google Authenticator). |
SMS (USP) | Login via user name plus one-time password which is sent via SMS by the WAF (USP). |
Mobile Nummer | Login with the mobile phone number and a password which is sent to this number. |
Yubikey (USP) | Login with username and Yubikey. |
Zielsystemlogin | Login with username and password which is checked against the configured target system. Here, for example, a login against an Active Directory can be realised. |
Zielsystemlogin (mehrfach) | Login with username and password which is checked against different configured target systems. For example, a login against different Active Directory domains can be realised. |
Mailverification | Login with user name and one-time password which will be sent by email. |