IBM webMethods Hybrid Integration

Join this online group to communicate across IBM product users and experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.

#TechXchangePresenter

View Only

Back to Library

webMethods Developer Portal MFA using Token Based OTPs

Wed September 14, 2022 10:10 AM

webMethods Community Member

Introduction

In this tutorial, you will learn how to use token based OTPs for multi factor authentication in webMethods Developer Portal.

Pre-requisite

SMTP server and that need to be configured in webMethods Developer Portal for mail service.
Any one of the RFC compliant software- or hardware token, such as:
- Google Authenticator
- WinAuth (Windows)
- html5-google-authenticator (cross platform, HTML)
- JAuth (cross platform, JAVA)

In this tutorial we would use Google Authenticator.

Steps to follow

Ensure SMTP server is configured under Administration → SMTP

image1219×573 31.4 KB
Next enable MFA in Administration → Security

image1102×555 29.5 KB
When user sign up in webMethods Developer Portal they would be receiving the secret token via email
The secret token will be generated only once if it’s lost it can’t be recovered
Using the secret token the Google authenticator can be configured. Provide the secret token as key for your account setup

image350×521 10.9 KB
We’re done with setting up the MFA. Next time when user tries to login webMethods Developer Portal they would be requested for OTP

User can provide the token from Google Authenticator has a OTP
You will be taken to the Welcome Page after authentication

image1493×682 108 KB