By: Sylvain BONNEFON user 28 Jun 2021 at 7:28 a.m. CDT

0 Responses
Sylvain BONNEFON gravatar
1) some dev that enables OIDC using CustomControls/ConditionalAccess interaction with AD as : - first factor : o MyApp asks login to AD o AD sends SignatureId (the id of the voice print associated to user, in AD) to Whispeak's Gluu o Whispeaks (using SignatureId in Gluu database) realize the challenge and send results to AD è If correct = AD provides login into MyApp, if KO, AD refuses, if error AD fallback into some alternate way. - second factor : o MyApp asks login to AD, o AD challenges User/password (or whatever is configured in it), o if OK AD sends SignatureId to Whispeak's Gluu, o Whispeaks realize the challenge and send results to AD. è If correct = AD provides login into MyApp, if KO, AD refuses, if error AD fallback into some alternate way. Demo will be done with MyApp=Moodle 2) the dev around interception script including what is needed for enrolment and casa ? - Enrolment : o when there is no SignatureID in AD, user is redirected to enrol step where he gives a voice sample o if OK, SignaturedID is generated dans stored in Gluu database o The SignatureId is then returned to caller via OIDC, and the call sets it into AD o If KO, caller notify an impossibility to enrol with error message.