Onboarding With Additional Authentication Factors
During the onboarding process, you have the option to register additional factors that are optionally used during sign in, based on the calculated risk level of the login attempt. Thanks to the adaptive authentication module, the actual risk level of the sign in attempt is calculated in real time based on several factors, like IP address, device in use, location, velocity, etc. To learn more about how the risk is calculated, see Risk score documentation.
In the EXAMPLE project, the pre-defined risk levels and enforced authentications are the following:
- low risk score: normal login with passkey
- medium risk score: normal login with passkey with email notification
- high risk score: login with passkey + one of the other registered factors
You can register either or both OATH (aka TOTP) with a 3rd party authenticator app, and recovery codes.
Registering OATH (TOTP)
After selecting the OATH Authenticator App, make sure that you open the 3rd party authenticator application on you phone to read the displayed QR code.
Once the account was successfully registered in the app, click on the Continue button and type in the code displayed by the authenticator app.
In the next step you can either skip or register recovery codes.
Registering recovery codes
After selecting the Recovery Codes option, press Continue. Recovery codes are generated and displayed. Please, make sure you copy, print or download them because you cannot reveal your codes later.
Once you put the codes in a safe place, click Continue and now you are signed in to the example application.
