OneSpan Get User Authenticator node

The OneSpan Get User Authenticator node retrieves the authenticators assigned to a user and helps in appropriately enabling the user’s authentication and security levels.

Compatibility

Product	Compatible?
ForgeRock Identity Cloud	Yes
ForgeRock Access Management (self-managed)	Yes
ForgeRock Identity Platform (self-managed)	Yes

Product

Compatible?

ForgeRock Identity Cloud

Yes

ForgeRock Access Management (self-managed)

Yes

ForgeRock Identity Platform (self-managed)

Yes

Inputs

This node requires the following inbound data:

Description	Attribute name	Source
Username	As specified in the property	Shared state

Description

Attribute name

Source

Username

As specified in the property

Shared state

Dependencies

To use this node, you must integrate OneSpan in your Identity Cloud tenant environment and enable authentication through a OneSpan VIR10 authenticator.

Configuration

The configurable properties for this node are:

Property	Usage
IAA Domain	The domain in which the user account resides. In a sandbox, the domain is the same as your tenant name. For example, master.
User Name In SharedState	The key parameter in shared state that represents the OneSpan IAA username. For example, username.

Property

Usage

IAA Domain

The domain in which the user account resides. In a sandbox, the domain is the same as your tenant name. For example, master.

User Name In SharedState

The key parameter in shared state that represents the OneSpan IAA username. For example, username.

Outputs

There are no outputs from this node.

Outcomes

The outcome specifies the authenticator configured:

TYP: A TYP authenticator is configured.
VIR10: A VIR10 authenticator is configured.
Both: Both TYP and VIR10 are configured.
None: No authenticator is configured.

Troubleshooting

If this node logs an error, review the log messages for the transaction to find the reason for the exception and address the issue appropriately.

Examples

This example journey shows user registration and login. It highlights the use of the OneSpan Get User Authenticator node:

The OneSpan Get User Authenticator node gets the authenticators assigned to a user and appropriately directs the flow in the journey:

Outcome Description

Outcome	Description
`TYP`	The flow is directed to the Message node.
`VR10`	The flow is directed to the OneSpan Auth Generate VOTP node.
`Both`	The flow is directed to the Choice Collector node. The Choice Collector node forwards the flow to the OneSpan Auth Generate VOTP node or the Message node based on the choice made.
`None`	The flow is directed to Register Authenticator node so the user can be assigned an authenticator.

TYP

The flow is directed to the Message node.

VR10

The flow is directed to the OneSpan Auth Generate VOTP node.

Both

The flow is directed to the Choice Collector node. The Choice Collector node forwards the flow to the OneSpan Auth Generate VOTP node or the Message node based on the choice made.

None

The flow is directed to Register Authenticator node so the user can be assigned an authenticator.