biid Auth Tree Node

biid is a mobile identity platform that secures and protects digital infrastructures while allowing users to authenticate online.

Project Readme

image alt text

Biid Authentication Node

The Biid Authentication Node allows ForgeRock users to integrate their AM instance to the Biid platform. This document assumes that you already have an AM 5.5+ instance running with users configured.

Installation

Follow this steps in order to install the node:

  1. Download the jar file from here.
  2. Copy the biidAuthNode-1.0.0-no-deps.jar file on your server: /path/to/tomcat/webapps/openam/WEB-INF/lib
  3. Restart AM.
  4. Login into Biid Back Office and open your Entity details. Copy the Entity Key value save it for later.

image alt text

  1. Stay in Biid Back Office and open Entity App that is going to be used. Copy the App API Key value save it for later.

image alt text

  1. Login into AM console as an administrator and go to Realms > Top Level Real > Authentication > Trees.
  2. Click on Add Tree button. Name the tree biid and click Create.

image

  1. Add 3 tree nodes: Start, Username Collector, Biid Authentication Initiator.
  2. Connect them as shown in the image below.

image

  1. Select the Biid Authentication Initiator node and set the Entity Key from step 4, App API Key from step 5. Set Biid API Server URL based on your biid server location - it should be like https://api.integration-biid.com. Set Attribute that should be taken from Forgerock user as biid user, default is same username sn.
  2. Add 5 nodes: Polling Wait Node, Biid Authentication Decision, Retry Decision Limit, Failure and Success.
  3. Select the Polling Wait Node and set Seconds To Wait to 15.
  4. Select the Retry Decision Limit and set the Retry Limit to 4.

image

  1. Save changes.
  2. You can test the Biid authentication tree by accessing this URL in your browser https://YOUR_AM_SERVER HERE/openam/XUI/?realm=/#login/&service=biid.
  3. Enter your username and hit enter. An authentication request will be send to biid app through the AM authentication tree. Biid will verify you username and keys. If everything is correct you should get an authentication request on your phone.

image

Project Information
Partner
Partner
6.0
2018-06-05
openam
authentication
authTreeNode
frank.gasparovic
here
here