2nd factor-related features
17.5.5.2. 2nd factor-related features (JSP-Loginapp migration)

The following table provides information about the availability of JSP-Loginapp features in the Loginapp REST UI and high-level migration hints (where available).

Information about the availability of upcoming releases is indicative and subject to change.

Please note the additional information on discontinued functions (see link below).

Version information about features not yet available will be updated or clarified as soon as known.

Note that the specified release versions are indicative and subject to change.

The following notation is used to indicate release versions (examples):

  • 7.7: planned for IAM 7.7
  • > 7.7: planned for an IAM release after 7.7
  • >= 7.7: planned for IAM 7.7 or later

Airlock 2FA

Feature
Version
Description and migration hints
Airlock 2FA
7.3
All Airlock 2FA features are available in the Loginapp REST UI.

Migration hint

Use Airlock 2FA steps for authentication, token migration, and token self-management. The most important steps for the authentication flow are:

  • Airlock 2FA Step for Authentication
  • Airlock 2FA Activation Step (typically with the Airlock 2FA Device Edit Step).

Cronto

Feature
Version
Description and migration hints
Cronto authentication
7.3
User authentication with Cronto (Scan & TAN, Push, Scan & Login).

Migration hint

Use the Cronto Authentication Step in the authentication flow.

Extra device registration at login (AI-13455)
>= 7.7
If enabled, users can check a box during login to register another device during the login process. In combination with the Cronto Reset Step, this also implements the device reset link on the login page (AI-13456).

Email OTP

Feature
Version
Description and migration hints
Email OTP authentication
7.3
Send an OTP code via email to the end-user.

Migration hint

Use the Email Authentication Step in an authentication flow.

Resend button (AI-14039)
>= 7.7
Resend button to resend email on OTP page.

Various 2nd factors

Feature
Version
Description and migration hints
mTAN authentication
7.3
General mTAN authentication features such as SMS gateways, OTP generation, token- and credential data model, masking phone numbers.

Migration hint

Use the mTAN Authentication Step in an authentication flow.

RSA SecurID via RADIUS
7.3
OTP authentication with the RSA SecurID. Connect to the RSA server via RADIUS.

Migration hint

Use the OTP Check via RADIUS Step in an authentication flow.

OneSpan Digipass OTP
7.3
OTP authentication with OneSpan (Vasco) Digipass OTP hardware tokens.

Migration hint

Use the Vasco OTP Authentication Step in an authentication flow.

OATH OTP
7.3
OTP authentication using OATH compliant devices or apps (e.g. Google Authenticator app).

Migration hint

Use the OATH OTP Authentication Step in an authentication flow.

OTP via RADIUS
7.3
OTP checks against a RADIUS server.

Migration hint

Use the OTP Check via RADIUS Step in an authentication flow.

The authentication step only supports RADIUS servers that accept the username and the OTP in the first RADIUS request. It does not support scenarios where the username is sent in the first request and the OTP in the second request.

Matrix cards (AI-13460)
7.5
Authentication with matrix cards (grid cards).
The authentication step and REST API are already available in IAM 7.3 but there are no web UI components before IAM 7.5.