Configuring Device Authentication on Windows with Passwordless Login and Push Notifications
Introduction
This tutorial shows you how to configure your Windows device to authenticate with passwordless login using Oracle Universal Authenticator.
For demonstration purposes push notifications are sent to Oracle Mobile Authenticator (OMA) on Android devices.
Objectives
In this tutorial you will perform the following tasks:
- Configure OMA Push Notifications for Oracle Mobile Authenticator in the Self-Service Portal.
- Sign in to Microsoft Windows with Passwordless login.
Prerequisites
Before starting this tutorial you must have:
- A running Oracle Advanced Authentication (OAA) installation deployed with Oracle Universal Authenticator.
- Oracle Advanced Authentication configured to use Push Notification for Android as per the following sections:
- Factor Verification turned on in Oracle Advanced Authentication.
- A Windows device with the Oracle Universal Authenticator client application installed.
- OMA Push Notification set as an authentication factor in the Oracle Universal Authenticator integration agent.
- Access to the Self-Service Portal and can login with your user credentials.
- Oracle Mobile Authenticator installed on an Android device. This can be downloaded from the Google Play Store.
Task 1: Configure Factors in the Self-Service Portal
In order to use passwordless login, you must have OMA Push Notification configured as the default factor in the Self-Service Portal.
To add OMA Push Notifications as a factor, see Configuring Push Notification Challenge With Oracle Mobile Authenticator in the Oracle Advanced Authentication Self-Service Portal.
To set OMA Push Notification as your default factor:
- In the Self-Service Portal navigate to My Authenticators.
- In your OMA Push Notification Challenge select the ellipsis, and select Set as Default.
Task 2: Sign In to Windows Using Oracle Universal Authenticator
Note: The instructions below assume you have not logged into this device previously with Oracle Universal Authenticator using your Oracle Access Management credentials.
Day 0 Use Case
-
Start your Windows device and select Oracle Universal Authenticator to login:
-
In the username screen, enter your Oracle Access Management username and click the arrow:
-
You are prompted to enter your OAM password and Windows credentials. Enter the required credentials and click the arrow:
Description of the illustration credentials.jpg
Note: The Windows Username takes the format of
azuread\<username>. -
If the credentials are verified successfully, an Approve login on device message will appear as below. A push notification will be sent to Oracle Mobile Authenticator on your mobile device. On the mobile device select Allow.
-
If authentication is successful you will be logged into your Windows device and the Windows desktop will appear.
Day N Use Case
-
Start your Windows device and select Oracle Universal Authenticator to login:
-
In the username screen, enter your Oracle Access Management username and click the arrow:
-
An Approve login on device message will appear as below. A push notification will be sent to Oracle Mobile Authenticator on your mobile device. On the mobile device select Allow.
-
If authentication is successful you will be logged into your Windows device and the Windows desktop will appear.
Learn More
- To see how seamless SSO works with protected applications after logging in with Oracle Universal Authenticator, see Seamless Single-Sign On With Oracle Universal Authenticator.
Feedback
To provide feedback on this tutorial, please contact idm_user_assistance_ww_grp@oracle.com
Acknowledgements
- Author - Russ Hodgson
More Learning Resources
Explore other labs on docs.oracle.com/learn or access more free learning content on the Oracle Learning YouTube channel. Additionally, visit education.oracle.com/learning-explorer to become an Oracle Learning Explorer.
For product documentation, visit Oracle Help Center.
Configuring Device Authentication on Windows with Passwordless Login and Push Notifications
F96300-01
May 2024