Configuring a Mobile Multi-Factor Authentication (MMFA) Authenticator Mechanism

Edit online

This authentication mechanism can be used to initiate and correlate results for a range of mobile multi-factor authentication techniques.

Procedure

  1. Log in to the local management interface.
  2. Click AAC.
  3. Under Policy, click Authentication.
  4. Click Mechanisms.
  5. Click MMFA Authenticator.
  6. Click Modify.
  7. Click the Properties tab.
    1. Select the property that you want to configure.
    2. Click Modify.
    3. Enter the value for that property.
    4. Click OK.
  8. Take note of the following property for the mechanism:
    Signing Attributes
    This property defines a comma separated list of context attributes that is added to a new JSON value attribute that is passed as a new pending attribute to the target mobile device. If supported by the device, this JSON value is used to extract the various messages that is displayed to the end user. The MMFA server also uses this JSON value during signature validation.
    Note:
    • The value that is set here can be overridden when the signAttributeList property is set in a specific MMFA authentication policy. See Authentication Policy Parameters and Credentials
    • The supported SigningAttributelist values are only contextMessage and pushMessage.
  9. Click Save.

What to do next

When you configure the mechanism, a message indicates that the changes are not deployed. Deploy the changes when you are finished. See Deploying Pending Changes.