This site contains the documentation that is relevant to older WSO2 product versions and offerings.
For the latest WSO2 documentation, visit https://wso2.com/documentation/.

Configuring Multifactor Authentication

Follow the instructions below to enable and use multifactor authentication.

  1. To enable, set the value of UseMultifactorAuthentication element in <IS_HOME>/repository/conf/identity.xml file to true.
  2. Start the IS server and log in to its Management Console.
  3. Click My Identity menu under the the Main menu.
  4. From the My Identity menu, select Multifactor Authentication sub menu.
  5. Select the preferred XMPP Provider.
  6. Provide the user name corresponding to the XMPP Provider and the provider's extension. For example, wso2ISuser@xmpp-provider.com.
  7. Enter a PIN Number containing more than six characters.

    The Use the PIN number for authentication option specifies whether the PIN number should be used in the authentication process. If you select this option, you should provide the PIN number in the authentication process. Else, the multi-factor authentication process expects a yes/no type of response.
  8. Once you are done, click the Add button.
  9. If the XMPP is configured successfully, you get a notification indicating so.
  10. XMPP based Multifactor authentication is now enabled. A new option appears by the name Enable XMPP based multifactor authentication. XMPP based multifactor authentication will be activated only if you tick this option as shown below.

You can change these settings any time after adding them. To disable XMPP based multifactor authentication, deselect the Enable XMPP based multifactor authentication option, and click the Save button.