Quasr
  • Introduction
    • Welcome to Quasr
    • Concepts
      • Flexible Authentication
      • User-Centric Privacy
      • Modern Development
    • Terminology
    • FAQs
  • Getting Started
    • Sign up with Quasr
    • Setup your tenant
      • Factor Configuration
      • Enrolling additional factors
      • Test with the Sample Client
      • Understanding Scopes & Scores
      • Setting up an API Client (M2M)
    • Connect your app
      • Hosted Login UI
      • Custom Login UI
      • Embedded Login UI
  • Account Administration
    • Introduction
    • Account & Billing
      • Metrics
    • Tenants
    • Usage & Statistics
    • Security
  • Tenant Administration
    • Introduction
    • Dashboard
    • Tenant Settings
    • Your Security
    • Accounts
      • Tenant Admins
    • Factors
      • Factors and Scoring
      • Username (ID)
      • Federation (OAuth2 / OIDC)
        • Apple
        • Facebook
        • GitHub
        • Google
        • LinkedIn
        • Slack
      • Time-based One-time Password (TOTP)
      • One-Time Password (OTP)
      • Password
      • Secret
    • Controls
      • Configuration
      • Permissions
      • Consents
      • Rules
    • Attributes
      • Capturing Claims
      • Sourcing Claims
      • Viewing Claims
      • Searching Claims / Users
      • Sharing Claims
    • Extensions
      • Synchronous
      • Asynchronous
    • Tokens
      • Session Token (OAuth 2.0)
      • Access Token (OAuth 2.0)
      • Refresh Token (OAuth 2.0)
      • ID Token (OIDC 1.0)
      • Consent Token
      • Authorization Code (OAuth 2.0)
    • Hosted Login Page
    • APIs
      • Authentication API
      • Management API (GraphQL)
  • Legal
    • Terms of Service
    • Acceptable Use Policy
    • DPA & Subprocessors
  • More Info
    • Standards
    • Security
      • Vulnerability Disclosure
      • Wall of Recognition
    • Support
    • Status
Powered by GitBook
On this page
  1. Getting Started
  2. Setup your tenant

Factor Configuration

PreviousSetup your tenantNextEnrolling additional factors

Last updated 1 year ago

Every newly created tenant only has the following factor provisioned and enabled by default:

  • (OIDC federation and used to access your tenant using a Quasr account)

Other authentication methods are already provisioned but disabled. The following can be enabled as preferred right away, as they do not need additional configuration.

Authentication Methods (Factors) are configured and enabled tenant-wide (not per client). You can always disable a factor as needed - either in its factor settings, or alternatively via API.

Enabling additional authentication factors

Let's enable a few more authentication factors to be used by end users:

In the Tenant Administration, click the "Factors" menu item on the left, then edit the status of each of the following factors, setting it to enabled:

  • Authenticator App (Time-Based One-Time Password)

  • Password

  • Secret

  • Username

The above factors do not require any additional configuration.

(required if you want to use Client Credentials Grant or need Client Secrets)

Any other factors require additional configurations, those are provisioned but not enabled by default, and you first need to complete the configuration and enable them via Tenant Administration or API. For example, a requires an extension to deliver the OTP to the end-user. A social connection (Google, Facebook, etc.) requires an app to be registered on the social provider side.

Secret
Username
Password
Time-Based One-Time Password
One-Time Password (OTP)
Quasr
Enabling factors on your tenant
Factors in the Quasr Tenant Admin UI (Quasr is enabled by default)
Username factor in the Quasr Tenant Admin UI (disabled by default)