OneSpan authentication journeys
The OneSpan authentication journeys contain one auxiliary service, thirteen nodes, and four demo nodes that are used only for testing.
Auxiliary service
An auxiliary service is a separately configured service named "OneSpan Configuration". Then, using the OneSpan Configuration service you configure the OneSpan nodes.
Quick start
The sample journeys shown here help you to address the most common use cases. Before you start using these sample journeys, perform these steps:
-
Add the "OneSpan Configuration" service.
-
Reproduce below sample journeys using either of below two methods:
-
Manually create a new journey following the design and remain all the settings default.
-
Import the sample journeys using the JSON files under the
samplefolder from here.
-
Sample journeys
OneSpan IAA user registration
The OneSpan IAA user registration journey interacts with the IAA service to create and activate a Digipass account:
OneSpan IAA user login
The OneSpan IAA user login journey checks the browsing context and analyzes the risk of the end-user login:
OneSpan IAA validate transaction event
The OneSpan IAA validate transaction event journey evaluates the risk before an end-user tried to send a transaction, based on the transaction details and the browser or mobile’s context:
OneSpan IAA validate non-monetary events
The OneSpan IAA validate transaction events journey provides a generic validation for non-monetary events:
OneSpan CA offline user registration and Digipass activation
The OneSpan CA offline user registration and Digipass activation journey interacts with the OneSPAN OCA service which creates a Digipass user account and awaits a Digipass Authenticator to activate the license:
OneSpan CA user login with one-time password
The OneSpan CA user login with one-time password journey validates the one-time password and returns the validation result. If the authentication has succeeded, the browser will be redirected to the success URL:
OneSpan CA user login with challenge / response (CR)
The OneSpan CA user login with challenge / response (CR) journey validates the OTP and returns the validation result using the Challenge/Response mechanism. If the authentication has succeeded, the browser will be redirected to the success URL.:
OneSpan CA offline transaction data signing
The OneSpan CA offline transaction data signing journey validates the signature and returns the validation result. If the authentication has succeeded, the browser will be redirected to the success URL:
OneSpan RA insert transaction
The OneSpan RA insert transaction journey leverages OneSpan Risk Analytics and gets a response code:
Using Authentication
This section describes how to use the OneSpan IAA user register authentication journey and how the authentication nodes work.
To start the authentication process:
-
Access https://<tenant-env-fqdn>/am/XUI/?realm=alpha&authIndexType=service&authIndexValue=OneSpan-XUI-Adapative-Authentication-User-Register-Sample-Tree in your browser.
-
Enter the username and password in the login screen
Password should be at least eight characters long and include at least one lowercase, one uppercase, and one number. Also it and should not include part of the username for any three characters.
-
Once the Risk Analytics has accepted the user registration, the IAA service creates a Digipass user account and waits for a trusted device to activate the license with an activation token, which is rendered as a visual code.
-
Launch the AAS Demo App, click SCAN and use the camera to scan the above visual code.
-
Once the code is detected, the app prompts you to enter a 6-digit security PIN and confirm the same.
After completing the registration process, the demo app displays the user page and the browser redirects to the success URL.
-
To verify that the user registration process has been logged by the system, log in to your IRM system and navigate to SUPERVISE & INVESTIGATE > Latest Events.
