Authentication

On the Authentication page, you can configure the authentication settings of Digipass Authentication for IIS Basic.

Configuring authentication settings

Enable IIS Basic authentication

Select this option to allow the Digipass Authentication Module to intercept authentication requests.

Timeout (in min)

Specify the session timeout in minutes. After this period of time, users need to re-authenticate if no HTTP requests have been submitted.

If a static password was used in the logon (rather than an OTP), the session may not appear to time out, as both browser and IIS can cache and automatically replay a password to reconnect. However, if an OTP was used in the logon, the session will time out as expected, as the OTP cannot be reused.

Replace user names with user attributes

Select this option to replace each user ID with a user attribute. If this option is not selected, each user ID will be left unmodified. For more information, see Configuration settings.

Replace passwords with user attributes

Select this option to replace each user’s password with a user attribute. For more information, see Configuration settings.

Attribute group

Type the attribute group name to use. Each user attribute is set based on an attribute group name. This allows multiple Digipass Authentication Modules to use different values for the same user attributes without confusion.

For more information about user ID and password replacement, see Configuration settings.

HTML file

Specify the HTML page that will be presented to a user if their logon is rejected by the Digipass Authentication Module.

Realm

Specify the realm. The realm is usually the computer, system, etc. that is being logged on to. If the realm property is set in IIS, its value will appear in a standard basic authentication logon dialog box displayed by the browser when IIS requests user logon details.