PIN Authentication

Christopher Dakin

Introduction

LogonBox supports user authentication via a PIN. This article explains how to configure your LogonBox to use this method.

 

1. Configuring the Authentication Scheme

It is important to note that you can apply different authentication flows for six different types of logon: User Logon, Password Reset, Client, Account Unlock, SSO and Admin Logon.

Each of these can have their own default authentication flow configured, but for this article we shall alter Password Reset.

Navigate to Authentication->Schemes->Password Reset. Note that by default this is configured with a yellow Username module and a green Security Questions one.

PIN is a green module, so it must exist along with either a yellow or blue module, which we already have here.

Let’s keep the existing Username and Security Questions modules and add the PIN module by clicking the plus icon next to PIN to add it into the authentication flow.

This module can be placed anywhere after the Username one, so let's place it before Security Questions. Simply drag the module from its default position to inbetween Username and Security Questions and click Save at the bottom.

 

2. PIN options

There are some options you can choose to configure for the PIN if required. Click on the edit icon inside the PIN module to see these settings.

As PIN is a very simple module there is only one setting that can be altered, which is PIN length and defaults to 8 digits.

Alter the PIN length as required and click Apply to save the changes.

 

Before users can use their PIN they of course need to have a number set. There are two ways the PIN can be set, either via the admin account or by the user themself.

 

3. Admin setting PIN

To set the PIN as admin, navigate to Access Control->Users and find the user you wish to set the PIN for. Click the green gears icon and then the Set PIN option.

 

Type in the new PIN and confirm it and click Create to finish.

 

3. User setting their own PIN

Assuming the user is able to log on to My Account without needing a PIN (i.e the PIN module is not attached to the User Logon scheme), then they can navigate to My Profile->My PIN and set their own PIN and confirm and click Save.

 

4. Testing

As we have configured this scheme for Password Reset, to test this click on the Reset Password link on the main LogonBox portal.

 

Enter the username of the user to be reset and click Next.

 

They will then be prompted for their PIN.

 

The authentication continues with the other modules that may be configured (in this case Security Questions) after which the user is prompted to reset their password.