Backup offline authentication for Digipass Authentication for Windows Logon
Virtual Mobile Authenticator can be used as a backup mechanism for Digipass Authentication for Windows Logon offline authentication, when users do not have their hardware authenticators at hand. This extends the OTP delivery features of Message Delivery Component (MDC) to Digipass Authentication for Windows Logon. With Virtual Mobile Authenticator the user receives one-time passwords via mobile phone or via email.
Backup offline authentication is intended as a temporary backup logon solution. If offline authentication is enabled in the used OneSpan Authentication Server policy, OneSpan Authentication Server sends encrypted offline authentication data (for offline authentication with the primary authenticator) and backup offline authentication data (for backup offline authentication with the primary Virtual Mobile Authenticator) to the Digipass Authentication for Windows Logon client during successful online authentication. During backup offline authentication, the Digipass Authentication for Windows Logon client verifies one-time passwords against the backup offline authentication data.
Backup offline authentication requires that users have assigned both an authenticator for online and offline authentication, and a primary Virtual Mobile Authenticator for backup offline authentication. To generate (backup) offline authentication data, users must successfully complete at least one online authentication procedure using Digipass Authentication for Windows Logon.
Backup offline authentication will not work with backup Virtual Mobile Authenticator.