Hi Prashant,
If the reCaptcha is failing to be displayed on the web page, that seems strange as that is managed by the browser (based on the reCaptcha JavaScript in the page source). In that case I would load the pages with browser dev tools enabled to see if you can see whether the browser attempts to load the reCaptcha and, if so, what error is being returned.
Perhaps there is some difference in the security properties of the pages so that one is preventing the running of the reCaptcha script or the calling out to Google. Again, browser dev tools console should tell you if that is happening.
More usually, reCaptcha fails when trying to validate the completion. That is a back-channel call from AAC to Google. The most common issue there is Certificate issues. Are the working (MMFA) use-case and the failing (USC) use-case both running in the same environment (i.e. same AAC runtime)? If not, perhaps one is missing required certificate.
Jon.
------------------------------
Jon Harry
Consulting IT Security Specialist
IBM
------------------------------
Original Message:
Sent: Wed July 22, 2020 12:47 PM
From: Prashant Narkhede
Subject: ISAM User Self Care Cookbook - facing reCAPTCHA issue
Hi All,
I have been following the ISAM MMFA cookbook and ISAM User Self care cookbook from the security learning.
In both of the cookbooks, there are steps to configure the reCAPTCHA.
Using the API key and API Secret generated via https://www.google.com/recaptcha/admin
It works fine for me for ISAM MMFA Use cases. However, reCAPTCHA is not being shown at all for ISAM User Self care pages.
The other thing that I observed that, In MMFA use cases, a separate workflow step has been configured under Authentication Policy as reCAPTCHA Verification. But there is no workflow step with USC Lost ID policy and managed via script in login page. And It's a default policy and not able to edit.
any inputs or suggestions on why reCAPTCHA is not being shown on USC pages?
Thanks in advance.
------------------------------
Prashant Narkhede
------------------------------