Getting started with Intelligent Adaptive Authentication: setting up the sandbox

The sandbox environment allows you to simulate transaction and non-monetary event workflows via the OneSpan Intelligent Adaptive Authentication demo. It also allows you to seamlessly integrate Intelligent Adaptive Authentication in your application and test the integration. You set up the sandbox for your purposes via the OneSpan Community Portal. From this portal you then configure the risk management environment and set up the mobile application.

Once you have registered, the OneSpan Community Portal also provides information how to proceed to work with the sandbox, as well as access to the resource library with product documentation and sample code.

Register as a user and sign up for a sandbox account

Before you begin

The pre-requisite to access the sandbox environment is to register and create your user account on the OneSpan Community Portal at https://community.onespan.com and then sign up for a sandbox user account. Based on the information you have entered, the portal creates your sandbox with a risk management and an authentication environment.

To register as a user on the OneSpan Community Portal

  1. In an internet browser, navigate to https://community.onespan.com.
  2. Click Sign up.

    The email address you provide in the following step can only be used once to register in the OneSpan Community Portal!

  3. To register and enroll as a user on the OneSpan Community Portal, fill in the fields in the account creation form and click Sign up.

After you complete the registration, your profile is created on the OneSpan Community Portal. To access it, navigate to https://community.onespan.com and click the profile button in the upper right corner. On the My Account page you can administrate your account, i.e. set a new password for the OneSpan Community Portal or delete your portal account.

When you delete your account, all data associated with the account will also be deleted. This action cannot be reversed!

Now that you have successfully created your Community Portal user account, you can sign up for a free sandbox account.

To sign up for a developer sandbox account

  1. In the OneSpan Community Portal, switch to the Intelligent Adaptive Authentication product page (via Documentation) and click Free Developer Sandbox.
  2. Fill in the fields in the account creation form and click Submit.

    The portal creates your sandbox environment with a risk management and an authentication environment.

You now have a sandbox user account.

The OneSpan Community Portal also creates a dedicated instance of the Authentication component domain with 10 authenticators available, and a dedicated environment of the Risk Management componentClosed The Risk Management component is a highly versatile, reliable, and scalable fraud management system used for monitoring online banking applications and payment processing across multiple channels; it helps to protect against anti-money-laundering (AML), online banking fraud, and to comply with regulations.. You are the owner of this instance of the Risk Management component, which enables you to change the rulesClosed Rules are used to define sets of criteria to verify if an event (transaction and non-monetary event) matches any fraudulent behavior. If an event matches a previously defined rule, an alert can be raised., responses, and actions as required.

The OneSpan Community Portal contains the links to your instance of the Risk Management component, the Intelligent Adaptive Authentication service, the OneSpan Intelligent Adaptive Authentication demo, and the default credentials and a summary of the information you provided in the registration form.

Configuration of the Risk Management component service

You can configure the instance of the Risk Management componentClosed The Risk Management component is a highly versatile, reliable, and scalable fraud management system used for monitoring online banking applications and payment processing across multiple channels; it helps to protect against anti-money-laundering (AML), online banking fraud, and to comply with regulations. that is created when you register for the OneSpan Community Portal. You can change the default rules or create new risk management campaignsClosed Campaigns group elements in a hierarchical structure to filter events and ensure that the raised alerts can be processed adequately. Campaigns target specific record types such as for instance approved transactions only. A campaign is the top filtering level., divisionsClosed Divisions group several types of rules in a hierarchical structure to filter the events to ensure that the raised alerts can be processed adequately., and rulesClosed Rules are used to define sets of criteria to verify if an event (transaction and non-monetary event) matches any fraudulent behavior. If an event matches a previously defined rule, an alert can be raised..

To configure the Risk Management component

  1. Log on to the OneSpan Community Portal with your user credentials.
  2. From the OneSpan Community Portal, access the Risk Management component and log on.

    The default credentials for your instance of the Risk Management component are also provided on the OneSpan Community Portal. Upon your first login to the Risk Management component you will be prompted to change the default password.

  3. To view the default campaigns, divisions, and rules, navigate to DESIGN RULES & ACTIONS > Rule Management.
  4. To expand the Rules navigation pane, click on the Search & List icon in the upper left corner of the Rule Management screen.

    During the integration of OneSpan Intelligent Adaptive Authentication into your server and client applications, you can explore and change the default rules as required.

  5. In the Risk Management component, navigate to SUPERVISE & INVESTIGATE > Score Analysis.

    Here, you can see all events and related information that will come from your e- and mobile banking applications. The Matches column in the table on the Score Analysis page lists every event that has matched a rule in the Risk Management component. The list entries are sorted by the relevant events.

  6. To check which response / status has been set for any of the matched rules and which action is to be taken, navigate to DESIGN RULES & ACTIONS > Rule Management.

For detailed information about how to configure the Risk Management component and to create and edit campaigns, divisions, and rules, see Risk Analytics Admin Guides.

Set up the mobile application

To handle activations, authentications, and perform transactions and non-monetary events, a mobile application can be integrated with Intelligent Adaptive Authentication and the OneSpan Intelligent Adaptive Authentication demo. To handle activations, authentications, and perform transactions, a mobile application can be integrated with Intelligent Adaptive Authentication and the OneSpan Intelligent Adaptive Authentication demo.

To set up the mobile application

  1. Create your mobile application.
  2. Install the application on the mobile device.

    If you load the app from your computer, ensure that the installation of applications from unknown sources is enabled on your device.

  3. To register the mobile application to receive Push NotificationClosed Message that is pushed from a server to a user and is displayed on an end-user device, e.g. a mobile device. Push notifications are received by a particular app. This must be registered on the corresponding server to receive notifications. Notifications can be sent at any time, the users do not have to be actively using the app at that time. messages, log on to the OneSpan Community Portal with your user credentials.
  4. On your My Account page, under Sandbox, click Register app. This will open a dialog box where the Use the OneSpan Adaptive Authentication demo app option is selected by default.
  5. To register and enroll your own mobile application and enable authentication via notification, select Use my own mobile application and fill in the fields in the form. This also enrolls the mobile application's certificate with Intelligent Adaptive Authentication.

    You can perform and repeat this step any time you log on to the OneSpan Community Portal.

The mobile application is now ready for use.

Next Steps

Once you have completed the registration, configuration, and setup steps, you can connect to the Intelligent Adaptive Authentication service with the user ID created via the OneSpan Community Portal.

Once you have completed the registration, configuration, and setup steps, you can connect to the Intelligent Adaptive Authentication service with the Sandbox user created via the OneSpan Community Portal. There, access the Platform API Sandbox Interactive API Reference to learn more about integrating Intelligent Adaptive Authentication.