Online activation

The mobile application must be activated to enable the Digipass security features (e.g. push and login). The Online activation handles the secure provisioning of secret keys from DIGIPASS Gateway to the mobile application.

The user must initiate the online activation process via the User Self-Management Website. This website generates an image that contains the activation credentials (see Activation image parameters). To complete the online activation, the user must scan the image with the mobile application. The online activation requires four network connections to DIGIPASS Gateway (see Online activation workflow via User Self-Management Website (Overview)).

Online activation workflow via User Self-Management Website (Overview)

Online activation workflow via User Self-Management Website (Overview)

Online activation workflow via User Self-Management Website (Overview) provides a high-level overview of the integration of OneSpan Mobile Security Suite in the mobile application, and does not show all the required calls to the OneSpan SDKs. Furthermore, it does not display the call by DIGIPASS Gateway and the User Self-Management Website to OneSpan Authentication Server.

For more information, refer to the OneSpan Mobile Security Suite documentation.

When calling the GenerateSRPSessionKey method of the DSAPP SDK, the registration identifier must be provided as a parameter for the user identity.

Activation image

The activation image contains the credentials required to perform an online activation. It is encoded as a plain text string with each parameter separated by a semicolon.

Activation image parameters
Parameter Description
Version

Version of the encoding protocol.

Length: 2 digits

Possible values:

  • 01. Current encoding.
Message type

The type of message contained in the image.

Length: 2 digits

Possible values:

  • 01. Activation image.
User identifier

The unique identifier used by OneSpan Authentication Server to identify a user. It must be stored in the persistent memory.

Length: Up to 255 UTF-8 characters.
Domain

The unique identifier used by OneSpan Authentication Server to identify a group of users. It must be stored in the persistent memory.

Length: Up to 255 UTF-8 characters.
Registration identifier

The unique identifier of a user for a given activation process. It will be used during the entire activation process.

The length, character set, and casing must be configured in the OneSpan Authentication Server Provisioning scenario.
User password

Data shared between the client and the server to secure the activation process. It will be used during the activation process.

The length, character set, and casing must be configured in the OneSpan Authentication Server Provisioning scenario.
DIGIPASS Gateway identifier

The unique identifier for DIGIPASS Gateway if the mobile application uses the OneSpan cloud infrastructure to redirect the network connections to a given instance of DIGIPASS Gateway.

This identifier must be ignored if the mobile application does not use the OneSpan cloud infrastructure, otherwise it must be stored in the persistent memory.

Length: 10 hexadecimal characters.

"01;01;myUserID;myDomain;myRegistrationIdentifier;myActivationPassword;123456789A"