Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 3 Current »

Overview

In this evolving world of the internet, which grown exponentially, it is important to secure and safeguard our data or critical transactions from hackers. To ensure complete protection of the application from vicious ransomware or any other malicious malware, we have added an additional layer of security. A new ‘Enable Re-Authentication’ check box is introduced at the Catalog level of the Service Request module. 

On configuring the Re-authentication in the Application Setting and catalog level based on the configuration, a user must re-enter the credentials before logging an SR or approving an SR to confirm the authentication.


Figure: Re-Authentication


User Personas:

  • Administrator
  • End user
  • Analyst

Configuring Re-Authentication

The Re-Authentication configuration enables you to restrict unauthorized users to create or approve a Service Request. For more information on configuring the reauthentication configuration, refer the following links:

 Application Settings

To configure Re-authentication in Application Settings, perform the following steps:

  1. Log in to the SummitAI Application.

  2. Navigate to the Admin > Infrastructure > Application Settings.
    The Application Settings screen appears.


    Figure: Application Settings screen

  3. Select the Re-Authentication Type, the options available are:

    Password

    OTP

  4. Select the required option and click SUBMIT



Password

The password re-authentication type enables you to enter only NT credentials during application re-authentication.


Figure: Re-authentication – Password

Notes

  • By default, Password is selected if the authentication mode is NT login.

  • Password re-authentication is only available for NT login and not for any other authentication modes.

Prerequisites:

  • Select Password as the re-authentication type from the Application Settings.
  • Enable the Re-Authentication check box and select Re-Authentication For as All for a catalog, and publish it.

Steps:

  1. Navigate to the Service Request module > New Service Request.

  2. Select a Tenant and click corresponding to a Service to select configured Catalog.
    The Catalog screen appears.


    Figure: Catalog screen

  3. Enter the required remarks and click SUBMIT.


    Figure: Credential screen

  4. Re-enter the NT credentials and click VALIDATE to approve a SR.
    A successful approval message appears.


OTP

The OTP (One Time Password) re-authentication enables you to authenticate using an OTP which is send to your configured mobile number or email address. It is mandatory to select the medium for the OTP to be send. You could either select anyone or both options based on your requirements. Also, configure the expiry of the OTP in minutes, you could configure from 1 to 15 minutes for the expiry of the OTP.

Note

By default, OTP is selected if the authentication type is SSO.

Prerequisites:

  • In the Application Settings screen, select an OTP as re-authentication type.
  • Enable Re-Authentication check box and select Re-Authentication For as All for a Catalog and Publish it.

To verify OTP Re-Authentication, perform the following steps:

Steps:

  1. Navigate to the Service Request module > New Service Request.

  2. Select a Tenant and click corresponding to a Service to select configured Catalog.
    The Catalog screen appears.


    Figure: Catalog screen

  3. Enter the required remarks and click SUBMIT.
    The re-authentication screen appears.

     For Mobile OTP Authentication


    Figure: OTP Authentication


    Notes

    • SMS Gateway should be configured to receive SMS.

    • You should have a mandatory mobile number for the OTP authentication.
     For Email OTP Authentication


    Figure: Email Validation

     OTP Expiry Authentication


    Figure: OTP Expires 



 Catalog Level Configuration

To configure catalog level configuration, perform the following steps:

  1. Navigate to the Catalog.

  2. Click the Create Service Catalog.

  3. Enter the required details for the following tabs:

    FORM DETAILS

    FORM BUILDER

    PREVIEW

  4. In the ADDITIONAL INFO tab, at DEFAULT SERVICE REQUEST VALUE section select the Enable Re-Authentication check box.

  5. Select the Re-Authentication For The options available are:
  • All – Enables an end-user to mandatorily re-authenticate while creating or approving a service request.
  • Create Service Request - Enables an end-user to mandatorily re-authenticate while creating a service request.
  • Approve Service Request - Enables an end-user to mandatorily re-authenticate while approving a service request.

    For more information, see Creating Service Catalog



  • No labels