9.2 Configuring OAuth2 Event in Advanced Authentication Server Appliance

In the Advanced Authentication Administration Portal, you can configure and manage various authentication settings such as methods, events, and so on. You can also configure various policies that are required for authentication. For more information about configuring Advanced Authentication Server Appliance, see Advanced Authentication Administration Guide on the documentation website.

To configure:

  1. Log into the Advanced Authentication Administrative Portal as follows:

    https://advanced_authentication_dns_name_or_IP_Address/admin

  2. Add an Active Directory or eDirectory repository where your Filr users are stored.

  3. Configure an authentication method for Advanced Authentication.

    NOTE: The following methods have been tested with Filr.

    • LDAP Password

    • Password

    • SMS OTP

    • Email OTP

    • Security Questions

    • Smartphone

    • TOTP

    Other authentication methods that NetIQ Advanced Authentication with OAuth2 event supports would also work, but they have not been explicitly tested.

  4. Create an authentication chain that is a combination of all the authentication methods that users must pass for successful authentication.

  5. Configure OAuth2 type event.

    1. Specify a name for the event.

    2. Enable the event by changing Is enabled to ON.

    3. Select the OAuth2 event type.The client ID and client secret are generated automatically.

    4. Note down the client ID and client secret values. You must specify these values in the NetIQ Advanced Authentication page of the Filr Administration Console (Port 8443 Filr Admin Console > System > NetIQ Advanced Authentication). You can copy the values and paste them in the Filr admin Console. See NetIQ Advanced Authentication Configuration in the Filr 3.4.1: Administrative UI Reference.

    5. Select the chains that you want to assign to the event.

    6. In the Redirect URIs option, specify the following redirect URIs for redirection to Filr page after successful authentication:

      • The URI of the Filr web page

      • The URI of the Filr client application

      You can copy the URIs from the Redirection URIs option on the NetIQ Advanced Authentication page of the Filr Administration Console (Port 8443 Filr Admin Console > System > NetIQ Advanced Authentication) and paste them here. See NetIQ Advanced Authentication Configuration in the Filr 3.4.1: Administrative UI Reference.

    7. Click Save.