Integration of Mobile Authenticator Studio provisioning

Mobile Authenticator Studio with OneSpan Cloud Authentication provisioning is either performed by the administrator who assigns the Mobile Authenticator Studio app, or initiated by the assigned authenticator user.

Offline multi-device activation with Cronto image (administrator-initiated)

A sequence of requests is required to integrate support for offline multi-device activationClosed Activation process in two steps that guarantees that only the intended user can perform the device activation. multi-device activation is closely tied to multi-device licensing (MDL). with a CrontoClosed Specific colorful cryptogram, similar to a QR code that is used for visual transaction signing. image initiated by an administrator.

To support administrator -initiated offline multi-device activation with a Cronto image

  1. Generate Activation Message 1 with the POST /authenticators/{serialNumber}/generate-activation-message endpoint.
  2. Generate the Cronto image for Activation Message 1 with the POST /visualcodes/render endpoint.

  3. Send an add device request using POST /users/register:

    • Payload:

      • devicecode
      • staticPassword
      • userID
      • domain
      • activationType:”offlineMDL”
      • serialNumber
  4. Generate a Cronto image for Activation Message 2 with the POST /visualcodes/render endpoint.

  5. Send an activate device request with the POST /registrations/{registrationID}/activate endpoint.

    RegistrationID is returned in the output by the add device request.

    • Payload:

      • Signature

Offline multi-device activation with a Cronto image (user-initiated)

A sequence of requests is required to integrate support for offline multi-device activation with a Cronto image initiated by the user.

To support user-initiated offline multi-device activation with a Cronto image

  1. Send a register user request with the POST /users/register endpoint:

    • Payload—required fields (other fields can be optionally added):
      • login: user ID of the user
      • passkey: static password of the user
      • activationtype:"offlineMDL"
  2. Generate the Cronto image for Activation Message 1 with the POST /visualcodes/render endpoint.

  3. Send a request to add a device with the POST /registrations/{registrationID}/add-device endpoint:

    • Payload:

      • devicecode
  4. Generate the Cronto image for Activation Message 2 with the POST /visualcodes/render endpoint.

  5. Send an activate device request with the POST /registrations/{registrationID}/activate endpoint:

    RequestID is returned in output by the add device request.

    • Payload:

      • Signature