Introduction
Registration
If users want to use ePass FIDO key as two-factor authentication token to logon to a application, the system administrator has to first enable the application with "FIDO U2F" authentication method, then users would be able to register their flash drives to their user accounts.
Enable FIDO U2F Authentication Method
To enable an application with FIDO U2F authentication method, follow the steps below:
- Login into the DualShield Management Console.
- Select the logon procedure associated with the application, e.g. Self-Service Console
- Right click "Logon Steps", and add the authenticator "Flash Drive FingerprintFIDO U2F"
(Please Note: Once an application is enabled with FIDO U2F authentication, all users in the application are
...
- required to use FIDO
...
- to logon to their user accounts.
...
- )
Register
...
a FIDO Key
To use a FIDO U2F key to logon into a user account, user must register the key must be first registered by the user to their user account. In herethis section, we take a web application: Self-Service Console as an example in here.
- Launch a Lanuch the web browser, and login the application
navigate to the application URL. Enter your username, you will see the screen as below:
(Please note: Currently, only Google Chrome browser supports the FIDO authentication method.)
- Insert a FIDO key into a USB port, if neccessary, you will be asked to activate your token.
- Enter the "Actication Code" that you have receive via E-mail or SMS text message.
- Once your token has been activated, it is ready for authentication.
Authentication
Lanuch a chrome browser and navigate to your application's logon page. Enter the username and insert the FIDO key.
Now, you have successfully logged into the web application via FIDO U2F authentication.
