TokenAutoEnrollment

Valve for auto enrolling already imported hardware tokens.

This valve is used together with TokenValidationValve.

Properties

Name Description Default value Mandatory Supports property expansion
username_param_name Property containing the username. User-Name No No
provided_otp_param_name Property containing the provided otp value. Yes Yes
hotp_lookahead Look ahead value for HOTP tokens. 10 No No
otp_length The length of the token one-time password. 6 No No

Example Configuration

{
        "name": "TokenAutoEnrollment",
        "config": { 
              "username_param_name":"User-Name",
              "provided_otp_param_name":"{{request.User-Password}}",
              "hotp_lookahead": "20",
	      "otp_length": "6"
        }
}

The value for parameter provided_otp_param_name is the provided otp sent in the request.

The value for  username_param_name  is the userid sent in the request.
Most common values for the username_param_name are User-Name for RADIUS and username for HTTP.

Requirements

Item set must have at least one entry.