Multi-factor authn.
Multi-factor authentication

IAM can inform SwissID on the authentication use case by configuring one of the following "ACR Values Claim":

  • loa-1
    • End-Users will be authenticated by means of username and password (one-factor)
  • loa-2
    • End-Users will be authenticated by means of two factors

By default, IAM will request the configured Authentication Context Class Reference (acr) value and validate if the OP (SwissID) did perform accordingly.