Identity Cloud

Secret Double Octopus (SDO) nodes

Integrates with Secret Double Octopus (SDO) to provide high-assurance, passwordless authentication system engineered to address the diverse authentication needs of a real-world, working enterprise.

SDO prerequisite

Before configuring the SDO nodes in Identity Cloud, you complete the following prerequisite steps using the Octopus Management Console:

After the prerequisite configurations are completed, you can obtain the API token, service URL, and service certificate from the Octopus Admin console. These three values are essential to configure SDO nodes in Identity Cloud.

Setting up

To set up SDO with Identity Cloud, configure Octopus node and Octopus return node.

A typical authentication journey using SDO nodes:

sdo journey

Octopus node configuration

The Octopus node sends the Octopus authentication request.

Outcomes

True

Successfully obtained device ID.

Error

An error occurred when obtaining device ID.

Properties

Property Usage

API token

The API Token of the Octopus Authenticator REST service from the Octopus Admin console.

Service URL

The URL of the Octopus Authenticator REST service from the Octopus Admin console.

Message

The message to be sent on authentication by push.

Octopus Return node configuration

The Octopus Return node checks that the Octopus authentication request was successfully approved.

Outcomes

True

Successfully verified the device.

False

The device cannot be verified.

Unregistered

The device is not registered yet.

Error

An error occurred during verification.

Properties

Property Usage

Service Certificate

The certificate of the Octopus Authenticator REST service from the Octopus Admin console.

Copyright © 2010-2024 ForgeRock, all rights reserved.