You can configure a deployment to integrate with Short Message Service (SMS) providers or modems using HTTP, HTTPS, or XML-over-HTTP to deliver on-demand tokencodes to a user’s mobile phone.
The HTTP request communicates the following delivery information to your SMS provider or modem:
The text message, which includes the on-demand tokencode
The mobile phone number
Any other information required by your SMS provider or modem
The maximum length of the text message is 140 bytes and the number of characters depends on the type of character encoding used by the SMS provider. The full payload of 140 bytes can support 160 7-bit characters, 140 8-bit characters, or 70 16-bit characters. The $OTT and $Lifetime variables are replaced with the actual values, which uses some of the available characters.
Note:HTTP connections are not secure. Sensitive information, such as a tokencode, may be exposed. For secure connections, configure HTTPS.
Before you begin
Each supported SMS provider has its own implementation guide with configuration values and parameters. To download the implementation guide for your SMS provider, go to https://community.rsa.com/community/products/rsa-ready/, enter the name of your SMS provider in the search field, and open the SMS provider's page.
If your SMS provider requires digital certificates or if HTTP connections are redirected to an HTTPS site, secure the certificate from your provider and save it locally. Importing the certificate enables Authentication Manager to validate the server to which the on-demand tokencodes are sent. Authentication Manger accepts all connections signed by this certificate. For instructions, see Import a Digital Certificate.
Make sure that all users’ destination mobile phone numbers meet the following requirements:
The mobile phone numbers must include country codes. If they are not already stored with country codes, select a country code when you configure on-demand tokencode delivery to mobile phones.
End the mobile phone number with a number.
The mobile phone number may begin with the plus (+) character.
Use the following characters or a blank space for separators: . - ( ).
Do not use alphabetic characters or any other characters not mentioned in this list.
The following are examples of valid destination mobile phone numbers:
+1 123 123 1234
In the Security Console, click Setup > System Settings.
Under Authentication Settings, click On-Demand Tokencode Delivery.
Click the SMS Configuration tab.
Under Tokencode Delivery by SMS, do the following:
Select Enable the delivery of on-demand tokencodes using SMS service.
From the User Attribute to Provide SMS Destination drop-down menu, select the user attribute that provides the mobile phone numbers used to deliver on-demand tokencodes to users.
If you use the internal database for user information, you can map to an attribute there, such as telephone number, or create a custom attribute. If you use an external identity source, you can choose an attribute that is mapped to an attribute in the external identity source (for example, telephone number).
From the Default country code drop-down menu, select a country code to prepend to the destination mobile phone numbers.
Country codes are required for all on-demand tokencode destination mobile phone numbers. Select a country code only when the mobile phone numbers to which you send on-demand tokencodes are not already stored with country codes.
From the SMS Plug-In drop-down menu, select HTTP.
Under SMS Provider Configuration, do the following:
In the Base URL field, enter the base URL for your SMS provider or modem.
Import a certificate when your SMS provider requires digital certificates or for when HTTP connections are redirected to an HTTPS site. For instructions, see Test Your SMS Provider Configuration.
Note:If your SMS provider does not require digital certificate or the base URL does not use HTTPS, this step is not required.
From the HTTP Method drop-down menu, select the method required by your SMS provider, and configure one of the following.
For GET or POST. Enter the parameters supplied by your SMS provider.
For XML. Enter the XML request body supplied by your SMS provider.
Note:If your SMS provider uses XML-over-HTTP, select XML for the HTTP Method.