In this scenario, the Oracle Cloud customer has hired a third-party company to work in the customer's cloud environment. These partner employees work remotely and need to manage Plataform (PaaS) and Infrastructure (IaaS) instances in the customer's cloud environment.
The customer's security office requires that each partner employee provide a second verification factor on top of the traditional user name and password for authentication.
This scenario’s requirements are as follows:
A second verification factor is required each time that a user signs in. Users can't sign in using just their user name and password.
Enable two factors for 2-Step Verification: The Oracle Mobile Authenticator (OMA) app on each user's own mobile device and the one-time passcode (OTP) sent to the user's registered email address.
During the authentication process, users can enable their device as a trusted device for a maximum time frame of one day and can register only one trusted device.
The email passcode must not be valid for more than 10 minutes.