Touch ID Recognition (Finger Print)
What is it ?
A fingerprint scanner is a type of technology that identifies and authenticates the fingerprints of an individual in order to grant or deny access to a computer system or a physical facility.
It is a type of biometric security technology that utilizes the combination of hardware and software techniques to identify the fingerprint scans of an individual.
A fingerprint scanner typically works by first recording fingerprint scans of all authorized individuals for a particular system or facility. These scans are saved within a database. The user requiring access puts their finger on a hardware scanner, which scans and copies the input from the individual and looks for any similarity within the already-stored scans. If there is a positive match, the individual is granted access.
Fingerprint scanners most commonly use an individual's thumbprint as identification.
How cidaas makes use of Finger print recognition for Multifactor Authentication?
Finger Print Recognition is one of the Authentication type cidaas uses to authenticate users through Authenticator application.
As a prerequisite, the admin must enable the Multifactor authentication settings in the admin dashboard - i.e. make sure Finger Print Recognition is enabled here.
Once the above setting is done, users can now configure their profile to enable MFA, and Finger Print recognition. For the very first time, the user needs to set up his/her cidaas Authenticator account. To do this:
1) Scan the QRCode provided on the web portal using the Authenticator App (i.e. profile settings section on the respective web portal- > Physical Verification Setup-> choose Pattern -> QR code.)
2) Configure the Finger print method as shown in the flow below: The finger print data will be sent to server for further processing along with the device-ID and the FCM token of the Smartphone.
3) This device-ID and FCM token is the basis for sending notifications during login.
4) When the user logs-in to the web portal/ any other service, he will get a notification to use his Finger print/TouchID. Only if this matches with the originally configured data -stored in cidaas server, will the user be successfully authenticated.
The steps involved during the usage of the finger print method:
Both the configuration and usage flows are explained below with concrete screenshots:
Finger Print: Configuration
Download and Install the cidaas authenticator app from the link below, if not done so already.
On your dashboard page, go to Physical Verification Setup and select Configure button seen under the TouchID (cidaas authenticator app) option.
The following screen appears on the web.
To scan the QR code presented, open your downloaded cidaas authenticator app and click on Add tab.
Scan the QR Code displayed on your desktop.
Note: The above describes how to configure the authentication method on a desktop, i.e., The QR code is displayed on the desktop and it is required to scan the QR code using the cidaas Authenticator App installed and opened on a smartphone/mobile device. However, the configuration could also be done exclusively on through a mobile device without using a desktop, the steps for which are explained below:
If using the mobile browser to configure the chosen method of authentication the QR code scan need not be scanned. Instead, as dislayed in the screen above, you need to just click on "Open cidaas authenticator". It will automaticaly ask for the appropriate authentication information, based on the verification type chosen.
After scanning, the login screen is displayed on your phone. Login with your credentials.
At the same time, the loading screen appears on your desktop, waiting for authentication
Once logged in, you need the Touch-ID verification. Verify your finger by placing it on your mobile's finger print sensor. If successful, the setup is completed.
Touch-Id recognition is now successfully configured.
Then, your app and your desktop screen will look as shown in figure:
Touch ID: Usage
During Login, select “click here for passwordless authentication. Enter your email ID and click Proceed. Select TouchID (cidaas authenticator app) to login
The multiple device screen gets displayed
The screen waits for authentication.
At the same time, push notification will be received in your authenticator app.
If using the cidaas authenticator mobile app, we don't need to scan qrcode. It will automaticaly ask for the appropriate authentication information, based on the verification type you choose.
If you click allow button further verification steps 4 will continue. or otherwise you cann't able to authenticate.
On click of deny button the 'Notification Deny' screen will be shown, where user can select appropriate reason for denying the request and submit it. After that you won't be able to authenticate.
You can now see the Touch-Id verification screen. Verify your finger by placing it on your mobile's finger print sensor. Only when it matches, can you login.
You are now successfully logged in.