Document toolboxDocument toolbox

Nexus Documentation
CURL vulnerability information (CVE-2023-38545) - Nexus awareness advisory on Microsoft's update KB5014754

Set up Freja eID authentication in Digital Access

Owned by Ann Base (Deactivated)
Last updated: Mar 21, 2024 by Josefin Klang (Deactivated)Version comment
4 min read

This article is valid for Smart ID 20.06.1 and later.

This article describes how to set up login to a web resource with Freja eID as the authentication method in Smart ID Digital Access component.

With Freja eID+, you will get an eID officially approved by the Swedish E-identification board with the quality mark Svensk e-legitimation. You can configure Digital Access component to only accept Freja eID+.

To see more information about Freja eID, go to https://frejaeid.com.

With the introduction of Freja eID, Digital Access component now supports three different Swedish eIDs. It supports (Mobilt) BankID and Freja eID over a native interface and AB Svenska Pass over SAML. Freja eID and AB Svenska Pass are approved by E‑legitimations­­nämnden and are therefore compliant with eIDAS.

  1. Download the Freja eID mobile app.

  2. Register a profile, use your email address as username.

  1. Download the Freja eID mobile app.

  2. Register a profile, use your social security number as username.

  3. You must also provide a copy of your driver licence or passport.

  4. A video will be recorded of your face to compare with the picture on your driver licence or passport.

  5. Optional: Register a company profile based on your personal profile.

Before setting up Freja eID, you need to do the following:

  1. In Digital Access Admin, go to Manage System > Authentication Methods.

  2. Click Add Authentication Method...

  3. Check Freja. Click Next >.

  4. In General Settings, enter a Display Name. The display name is shown to end users when they log in.

  5. Browse for and select the Client SSL Certificate that you received with the Freja eID registration (it is a .pfx file).

  6. Enter the Certificate Password.

  7. In Freja Service Base URL, the URL is pre-filled with: https://services.prod.frejaeid.com/
    The URL is pre-filled with "prod" meaning that this is the URL that shall be used for production environment. To use a test environment, change "prod" to "test".

  8. If you want to authenticate against the Freja Organisation eID interface, click Use Organisation ID Service.

  9. In User Info Type, select how a user shall authenticate: Email (Basic level - LoA1) or SSN (Plus level - LoA3).
    If Use Organisation ID Service is enabled, the value ORG_ID is available.

  10. In Enforce Freja eID+ authentication select which level of authentication shall be used: BASIC, PLUS or EXTENDED.

  11. Select Show QR Code to display a QR code during authentication that can be scanned with the Freja app. If QR code is to be used, the extended property "Attributes to return" and "User ID Attribute" are mandatory.

  12. Configure RADIUS reply if applicable.

  13. Click Next > and then Finish Wizard.

  14. Click Publish, that is marked blue, showing that updates have been done.

See "Add certificate authority" in the Add certificates in Digital Access article.

Client certificate and server certificate are configured to secure the communication between Digital Access component and the Freja service.

Related information

Copyright 2024 Technology Nexus Secured Business Solutions AB. All rights reserved.
Contact Nexus | https://www.nexusgroup.com | Disclaimer | Terms & Conditions