Configuring the Authentication Flow

Majid Latif

Introduction

LogonBox supports multiple authentication methods which can be used to log users on to the system as well as resetting their password etc.

This article explains how to configure your LogonBox to use the Security Questions authentication method.

 

1. Configuring the Authentication Scheme

It is important to note that you can apply different authentication flows for six different types of logon: User Logon, Password Reset, Client, Account Unlock, SSO and Admin Logon.

Each of these can have their own default authentication flow configured, but for this article we shall look at Password Reset.

Navigate to Authentication->Schemes->Password Reset. Note that by default this is already configured by default with a yellow Username module and a green Security Questions one.

So if you have not configured this before then nothing needs to be done here.

However if you have altered the authentication scheme and now wish to change it back to Security Questions, continue following this section.

First note the colour of the Security Questions module, which is green. This means that this module can be combined with any of the other modules in combination with either a yellow or blue module. A green module can be placed anywhere in the authentication flow after a yellow or blue (but not before).

Click the plus icon next to Security Questions to add it into the authentication flow.

If you have more than one green module, you can optionally drag the module to re-order the authentication flow but for this example, we will have just Username and Security Questions. Click Save to save the scheme.

 

2. Security Questions configuration 

You may optionally configure a couple of items with Security Questions. Click on the edit icon inside the Security Questions module to see these settings.

These are the available settings:

  • Questions to Ask: How many questions out of the available question pool do you want to ask the user during authentication? The module will choose randomly up to the number you define.
  • Answers Required: How many of these answers are required? You could for example ask 3 questions but only require 2 to be correct.
  • Full Answer: Do you want the full answer or have the system prompt for a single letter of the user's answer.

Click Apply to save any changes.

 

 

3. Altering / adding Questions

To alter any of the existing Security Questions that are asked or to create new ones, navigate to Authentication->Questions.

 

Creating a new question is very similar to editing one, so let's edit a question to see an example. On the first tab Options, you type in the actual question that is asked and you also have options to alter the minimum and maximum lengths that the answer can be.

 

On the Roles tab is where you define which users can be prompted for this question. Type in a Role and press enter to add the role. By default, if you add the Everyone role, then everyone on the system can see this. You can use Roles to set different questions for different sets of users if you wish.

 

Now that you have set up an authentication flow it is time for end-users to configure their user profile, refer this article for more information, Configuring User Profile.