To verify the configuration, you may do the following:
- Make sure your browser does not have an authenticated session. Terminate existing session using the logout URL
https://##External_FQDN_IAM##/auth/logout
. - Open the URL
https://##External_FQDN_IAM##/auth/ui/app/protected/tokens/airlock-2fa/devices
- You should be prompted for login and - after successful authentication - the Airlock 2FA device list should be displayed.
Additionally, the Loginapp log files may be used for verification and troubleshooting. The following log statements are relevant:
- Selection of target application in Loginapp REST API and start of authentication flow:
Selecting application "protected-spa" matching location "/auth/ui/app/protected/tokens/airlock-2fa/devices?lang=de"
Application Access for ID 'protected-spa': Preparing first flow
- Success of authentication flow:
uid:jdoe - User 'jdoe' is successfully authenticated by 'SSO_TICKET' and is authorized to access application 'protected-spa'.
Flow succeeded, user is authorized to access application "protected-spa"
- Redirection to Airlock 2FA self-service URL in the Loginapp REST UI:
Redirecting user to follow page "https://##External_FQDN_IAM##/auth/ui/app/protected/tokens/airlock-2fa/devices?lang=en"