How to customize PhenixID mobile apps settings

This article describes how to configure the settings for PhenixID mobile apps, Pocket Pass and One Touch.

The reader should have knowledge about PhenixID Server.

System requirements

  • PhenixID Server installed.
  • Mobile activation app configured
    • OneTouch activation
    • PocketPass activation
    • Self Service
    • MFA Admin

Overview

The instructions in this document will help you customizing the mobile apps settings.

Please make sure to have a backup of the configuration before making the changes below.

Pocket Pass

Parameters

Parameter Default value Comment
token_period 30 Time in seconds before generating a new TOTP token in Pocket Pass
token_pin
true
true / false / optional
Note: It's strongly recommended NOT to disable pin.

Configuration

In order to modify the setting you have to find the resource object, matching the "scenario ID".
So go to the tab Advanced in the configuration portal, then choose "Guide configurations", find your scenario and make a note of the "resource_ref".
Now click on Resources and find the id that you want to change. The settings are in the value for "content".

Base64 decode the value of the content key, modify the setting according to the table (search for token_period and add /change values in this section), base64 encode the modified content and replace the value in the resource object.

One Touch

Parameters

Parameter
Default value
Comment
lock_type
pin
pin
lock_required
true
true / false / optional
expression_description
Pincode with at least 4 digits

lock_expression
^[0-9]{4,}$

allow_fingerprint_scanner
true
true = Allow biometrics to be used.

false = Do not allow biometrics to be used.

true_prompt = Allow biometrics to be used. Present biometrics prompt during activation. [Requires PhenixID OneTouch version 4.3.0 and above]
incorrect_attempts
5

encryption_mode
plain

Configuration

To make the changes, please login to PhenixID Configuration Manager.

Click on the Tab “Advanced”.

Click on the pencil beside “Modules” and add the parameter and value to the section "name": "com.phenixidentity~phenix-pki".


When done press "Stage changes" and then "Commit changes".


Example configuration:

Pincode with exactly 6 digits {max=6,min=6} and biometrics allowed. Biometrics prompt will be displayed during activation. 

{
		"name": "com.phenixidentity~phenix-pki",
		"enabled": "true",
		"config": {
			...
			"issuer": "PhenixID",
			"expression_description": "Pincode with 6 digits",
			"lock_expression": "^[0-9]{6,6}$",
			"allow_fingerprint_scanner": "true_prompt",
			...
		},
},