Hello
I need to verify access to a secured website by using 2fa with a fingerprint approval.
Using the following authentication policy and adding my username I can use my registered mobile device to verify the request.
https://webseal/mga/sps/authsvc?PolicyId=urn:ibm:security:authentication:asf:mmfa_fingerprint&username=bhrI don't want users to modify the url manually so I want to implement the following use case:
1. users need to log in with username:password first
2. username parameter will be read from the credentials (e.g. AZN_CRED_PRINCIPAL_NAME)
3. http transformation rule will build the final url with following a fingerprint approval to access the secured website
Is this approach doable, any other suggestions/thoughts are welcome!
Best
Bernhard
------------------------------
Bernhard Hensler
------------------------------