How to configure Email OTP without email ID registration

How to configure Email OTP without email ID registration

book

Article ID: CTX472999

calendar_today

Updated On:

Description

This article covers two kind of Email OTP authentication methods, which deployed in Citrix ADC Nfactor AAA virtual server.

  • How to configure standard (with email ID registration) email OTP 
  • How to configure simple (without email ID registration) email OTP 

Instructions

1. Standard email OTP configuration reference link:

Citrix Email OTP Edoc 
Third-party configuration video guide in Chinese 

2. Configure simple (without email ID registration) email OTP:

    As the above document(Citrix Email OTP Edoc) said, "You can use Email OTP validation without email ID registration if you have provided the alternate email ID already as part of some AD attribute. You can refer to the same attribute in the email action instead of specifying the alternate email ID in the email address section."
   
Take AD attribute (mail) as example

2.1 ADC configuration
  • Email ID registration section is not needed
  • Email OTP authentication workflow is as follows::

image.png
  • Detailed configuration steps please refer official document Email validation section.
    • For step two(Create an LDAP authentication policy), you may change the First Factor (LDAP authentication) action as follows:
    • Via CLI:
      • add authentication ldapAction ldap1 -serverIP 10.102.2.2 -serverPort 636 -ldapBase "dc=aaatm-test,dc=com" - ldapBindDn administrator@aaatm-test.com -ldapBindDnPassword freebsd -ldapLoginName samAccountName -secType SSL -KBAttribute mail -alternateEmailAttr mail add authentication Policy ldap1 -rule true -action ldap1
    • Via GUI:
      • image.png
 2.2 AD user attribute configuration:
  • AD administrator should input mail attribute for AD user in advance.
image.png



3. Once you have configured all the steps mentioned in the previous sections, you must see the following GUI screen for EMAIL OTP Validation

image.png image.png
 
 

Environment

Citrix is not responsible for and does not endorse or accept any responsibility for the contents or your use of these third party Web sites. Citrix is providing these links to you only as a convenience, and the inclusion of any link does not imply endorsement by Citrix of the linked Web site. It is your responsibility to take precautions to ensure that whatever Web site you use is free of viruses or other harmful items.
Powered by Wolken Software