Factor Configuration

Every newly created tenant only has the following factor provisioned and enabled by default:

Quasr (OIDC federation and used to access your tenant using a Quasr account)

Other authentication methods are already provisioned but disabled. The following can be enabled as preferred right away, as they do not need additional configuration.

Secret (required if you want to use Client Credentials Grant or need Client Secrets)
Username
Password
Time-Based One-Time Password

Any other factors require additional configurations, those are provisioned but not enabled by default, and you first need to complete the configuration and enable them via Tenant Administration or API. For example, a One-Time Password (OTP) requires an extension to deliver the OTP to the end-user. A social connection (Google, Facebook, etc.) requires an app to be registered on the social provider side.

Authentication Methods (Factors) are configured and enabled tenant-wide (not per client). You can always disable a factor as needed - either in its factor settings, or alternatively via API.

Enabling additional authentication factors

Let's enable a few more authentication factors to be used by end users:

In the Tenant Administration, click the "Factors" menu item on the left, then edit the status of each of the following factors, setting it to enabled:

Authenticator App (Time-Based One-Time Password)
Password
Secret
Username

The above factors do not require any additional configuration.

PreviousSetup your tenant NextEnrolling additional factors

Last updated 2 years ago