user guide multi-factor authentication (mfa) service … · 2020. 12. 2. · 4.1 usage of the one...
TRANSCRIPT
voestalpine group-IT GmbH confidentiality: public
Page 1/17
USER GUIDE
MULTI-FACTOR AUTHENTICATION (MFA) SERVICE
FOR EXTERNAL EMPLOYEES
voestalpine group-IT GmbH confidentiality: public
Page 2/17
MULTI-FACTOR AUTHENTICATION (MFA) SERVICE
FOR EXTERNAL EMPLOYEES
1.1 Installation of the MobilePass + app using the QR code ................................................................... 3
1.2 Get an one time passcode via mobile app .......................................................................................... 6
2.1 Installation of the MobilePASS+ app using Self Enrollment ............................................................... 7
2.2 Get an one time passcode via mobile app .......................................................................................... 9
3.1 Registration of the hardware token .................................................................................................... 10
3.2 Get an one time passcode via hardware token ................................................................................ 12
4.1 Usage of the one time passcode with the mobile app ..................................................................... 13
4.2 Usage of the one time passcode with the hardware token ............................................................. 16
voestalpine group-IT GmbH confidentiality: public
Page 3/17
1.1 INSTALLATION OF THE MOBILEPASS + APP USING THE QR CODE
1. Open AppStore, Windows Store or Google Play Store on your mobile phone.
AppStore Windows Store Google Play Store
2. Search for „Mobilepass“ and choose the purple SafeNet MobilePASS+ app.
Note: Do not use the orange app.
3. Install the SafeNet MobilePASS+ app on your mobile phone.
4. Open this e-mail on your computer and open the link.
“Dear Mr./MS. Christian Schmidt,
Your Multi-Factor Authentication account has been created successfully.
Please go to the following URL to activate your account and carry out the registration:
https://cloud.eu.safenetid.com/selfEnrollment/index.aspx?code=fwefyMO6F265fFndY1AdRORhM
(If the above link does not work, copy and paste this URL to your web browser.)…”
voestalpine group-IT GmbH confidentiality: public
Page 4/17
5. Select the operating system of your mobile phone.
6. Open the MobilePASS+ app on your mobile phone.
7. 7. Push the “QR Code Enrollment” button.
8. Scan the QR Code on your computer screen.
voestalpine group-IT GmbH confidentiality: public
Page 5/17
9. In case of an error push “Retry” button.
10. Create a (4-digit) PIN Code. This is your personal identification code for using the app. After
entering the code push the “Submit” button.
“Enrollment Completed” Message.
Now you can use the Multi-Factor Service.
voestalpine group-IT GmbH confidentiality: public
Page 6/17
1.2 GET AN ONE TIME PASSCODE VIA MOBILE APP
1. Open the mobilePASS+ app on your mobile phone.
2. Push the lock icon.
3. Enter your PIN Code.
This is your one time passcode for the authentication.
voestalpine group-IT GmbH confidentiality: public
Page 7/17
2.1 INSTALLATION OF THE MOBILEPASS+ APP USING SELF ENROLLMENT
1. Open AppStore, Windows Store or Google Play Store on your mobile phone.
AppStore Windows Store Google Play Store
2. Search for „Mobilepass“ and choose the purple SafeNet MobilePASS+ app.
Note: Do not use the orange app.
3. Install the SafeNet MobilePASS+ app on your mobile phone.
4. Open this e-mail on your computer and open the link.
“Dear Mr./MS. Christian Schmidt,
Your Multi-Factor Authentication account has been created successfully.
Please go to the following URL to activate your account and carry out the registration:
https://cloud.eu.safenetid.com/selfEnrollment/index.aspx?code=fwefyMO6F265fFndY1AdRORhM
(If the above link does not work, copy and paste this URL to your web browser.)…”
voestalpine group-IT GmbH confidentiality: public
Page 8/17
5. Open the link “Enroll your MobilePASS+ token”.
Enrolling progress message.
6. In case of an error push “Retry” button.
7. Create a (4-digit) PIN Code. This is your personal identification code for using the app. After
entering the code push the “Submit” button.
voestalpine group-IT GmbH confidentiality: public
Page 9/17
“Enrollment Completed” Message.
Now you can use the Multi-Factor Service.
2.2 GET AN ONE TIME PASSCODE VIA MOBILE APP
1. Open the mobilePASS+ app on your mobile phone.
2. Push the lock icon.
3. Enter your PIN Code.
This is your one time passcode for the authentication.
voestalpine group-IT GmbH confidentiality: public
Page 10/17
3.1 REGISTRATION OF THE HARDWARE TOKEN
You can only register after receiving the hardware token.
1. Open this e-mail on your computer and open the link.
“Dear Mr./MS. Christian Schmidt,
Your Multi-Factor Authentication account has been created successfully.
Please go to the following URL to activate your account and carry out the registration:
https://cloud.eu.safenetid.com/selfEnrollment/index.aspx?code=fwefyMO6F265fFndY1AdRORhM
(If the above link does not work, copy and paste this URL to your web browser.)…”
2. Enter the serial number of your hardware token and click next.
You can find the serial number on the back side of your hardware token.
hardware token front side hardware token back side with serial number
voestalpine group-IT GmbH confidentiality: public
Page 11/17
3. Generate an one time passcode (OTP) by pressing the button on the hardware token.
4. Enter the one time passcode (OTP) and click next.
“Successful activation” Message.
Now you can use the Multi-Factor Service.
voestalpine group-IT GmbH confidentiality: public
Page 12/17
3.2 GET AN ONE TIME PASSCODE VIA HARDWARE TOKEN
You generate an one time passcode (OTP) by pressing the button on the hardware token.
This is your one time passcode for the authentication.
voestalpine group-IT GmbH confidentiality: public
Page 13/17
4.1 USAGE OF THE ONE TIME PASSCODE WITH THE MOBILE APP
Note:
From February 15, 2019 the MFA functionality is available for the Corporate Mobile Access
Service (CMAS).
This example shows the multi factor authentication using the corporate mobile access
service. Therefore CMAS and MFA user rights are required.
1. Enter https://mas.voestalpine.com in the webbrowser of your computer.
2. Enter your Windows username and password.
When you use the mobile app, you can decide to send an authorization request or to enter the
one time passcode manually.
3. Click on “Send an authorization request”
voestalpine group-IT GmbH confidentiality: public
Page 14/17
4. Open the message on your mobile phone.
5. Push the “Approve” button.
6. Optional: Enter your PIN (see chapter 1.1.10) and push the “OK” button. Depending on your
mobile phone the authentication also can be done otherwise - e.g. via fingerprint (TouchID).
voestalpine group-IT GmbH confidentiality: public
Page 15/17
“Successful activation” message.
Now you are authenticated by two factors.
voestalpine group-IT GmbH confidentiality: public
Page 16/17
4.2 USAGE OF THE ONE TIME PASSCODE WITH THE HARDWARE TOKEN
Note:
From February 15, 2019 the MFA functionality is available for the Corporate Mobile Access
Service (CMAS).
This example shows the multi factor authentication using the corporate mobile access
service. Therefore CMAS and MFA user rights are required.
1. Enter https://mas.voestalpine.com in the webbrowser of your computer.
2. Enter your Windows username and password.
3. Click on the button of the hardware token.
voestalpine group-IT GmbH confidentiality: public
Page 17/17
4. Enter the one time password and click on the submit button.
Now you are authenticated by two factors.