Allow FIDO Authentication to a Third-Party Domain

If your company developed an authentication client for FIDO third-party authenticators using the RSA SecurID Authentication API, you can allow FIDO users to access a third-party domain, which is a domain other than securid.com. You are permitted to add one third-party domain. The RSA SecurID Authentication API Developer's Guide describes how to implement a web client for third-party FIDO authenticators.

Before you begin

  • You must be a Super Admin for the Cloud Administration Console.

  • Obtain the value of the FIDO_RP_ID that is used in the FIDO web client from your web client developer.

Procedure

  1. In the Cloud Administration Console, click Access > FIDO Authentication.

  2. In the Host Name (FIDO_RP_ID) field, specify the host name of the host requesting authentication. Use domain name format. For example, abcd.com. This value must exactly match the FIDO_RP_ID in the client program that calls the RSA SecurID Authentication API.

  3. Click Save.

  4. (Optional) Click Publish Changes to activate the settings immediately.