Skip to main content

Integrate Authentication API

Adding an Authentication API application on Identity as a Service enables integration between the application using the Identity as a Service authentication APIs and Identity as a Service. Once configured, users are prompted to enter Identity as a Service challenge responses into their application user interface. The application communicates with Identity as a Service using the API calls to authenticate each response and grant access to the application.

See the Identity as a Service Authentication API Guide for more information.

Step 1: Add an Authentication API and configure the General settings

  1. Go to > Security > Applications. The Applications page appears.
  2. Click Add. The Select an Application Template page appears.
  3. Do one of the following:
    • Select Identity as a Service Integrations from the search drop-down list and scroll to find the application you want to add to IDaaS.
    • In the Search bar, enter a search option to filter for the application you want to add to IDaaS.
  4. Click Authentication API. The Add Authentication API page appears.
  5. Configure the App Settings.
    1. In the Application Name field, type a name for your application.
    2. In the Application Description field, type a description for your application.
    3. Copy and paste the Application ID into the IDaaS API calls being used by your application.
    4. Select the Source of the Client IP Address for Risk Conditions. The options are:
      • Not provided—The IP address is not provided and is not extracted from the connection.
      • Provided in the API—The IP address is provided in the request body of the API.
      • From the incoming HTTP connection—The IP address is extracted from the connection.
  6. Click Show Advanced Settings to configure the advanced settings.
    1. Select the following optional settings:
      • Allow client to specify that the IP Address is used for Audits but not for Resource Rule Risk Conditions
      • User Verification Check to allow user verification through the Auth API for Identity Provider authentication.
      • Manage Client Values to allow the Auth API to call self-admin (internal) APIs that are used to manage client values..
  7. Click Save.
  8. Proceed to Step 2: Configure a resource rule.

Step 2: Configure a resource rule

  1. Click the Resource Rules tab.
  2. Click Add Resource Rule.
  3. Follow the instructions in Create and manage resource rules.