This article describes how to use invisible token in Smart ID Digital Access component (Hybrid Access Gateway).

Invisible token is a web based two-factor authentication method. It relies on username and password for the first factor. Then the user can provision his browser with an activation code to create the second factor, the browser.

It is possible to use notification mappings to configure where the activation code will be sent. This can be useful if the user does not have a phone.

Prerequisites

Before starting to add invisible token, enable and configure notification mapping, if that shall be used. See Notification settings in Digital Access.

Step-by-step instruction

Log in to Hybrid Access Gateway administration interface

Log in to the Hybrid Access Gateway administration interface with your admin user.

Add notification mapping

In the Hybrid Access Gateway administration interface, go to Manage System.
Click Notification Settings > Notification Mappings.
Click Add Notification Mapping...
Check Enable.
Enter settings for the notification mapping. For more information, click the ?-sign.
Click Add.

Add authentication method invisible token

In the Hybrid Access Gateway administration interface, go to Manage System.
Click Authentication Methods > Add Authentication Method...
Select PortWise Invisible Token and click Next.
Enter Display Name, a unique name used in the system to identify the authentication method.
Click Add Authentication Method Server...
Make any updates, for information click the ?-sign and then click Next.
The General Settings are shown. Click Next to continue.
Add, edit or delete any replies if applicable and click Next.
Select the Notification Mappings that shall be enabled and click Next.

Default is SMS. Select Email if the OTP shall be send by email.
If applicable, click Add Extended Properties... to enable additional functionality for the authentication.
Click Finish.

Set up Invisible token

Prerequisites

Step-by-step instruction

Related information