Backup offline authentication - Virtual Mobile Authenticator

Virtual Mobile Authenticator can be used as a backup mechanism for Digipass Authentication for Windows Logon offline authentication, when users do not have their hardware Digipass authenticators at hand. This extends the OTP delivery features of Message Delivery Component (MDC) to Digipass Authentication for Windows Logon. With Virtual Mobile Authenticator the user receives one-time passwords via mobile phone or via email.

Digipass Authentication for Windows Logon supports Virtual Mobile Authenticators for online, offline, and Push Notification authentication.

Backup offline authentication is intended as a temporary backup logon solution. If offline authentication is enabled in the used OneSpan Authentication Server policy, OneSpan Authentication Server sends encrypted offline authentication data (for offline authentication with the primary Digipass authenticator) and backup offline authentication data (for backup offline authentication with the primary Virtual Mobile Authenticator) to the Digipass Authentication for Windows Logon client during successful online authentication. During backup offline authentication, the Digipass Authentication for Windows Logon client verifies one-time passwords against the backup offline authentication data.

Backup offline authentication requires that users have assigned both a Digipass authenticator for online and offline authentication, and a primary Virtual Mobile Authenticator for backup offline authentication. To generate (backup) offline authentication data, users must successfully complete at least one online authentication procedure using Digipass Authentication for Windows Logon.

Backup offline authentication will not work with backup Virtual Mobile Authenticator.