Authenticate using two-factor authentication
- Última actualización2020/04/15
Authenticate using two-factor authentication
Two-factor authentication (2FA) is a subset of multi-factor authentication (MFA). It provides an additional security layer that Automation Anywhere applies at the role level for users.
Prerequisites
- Valid username, password, and mfaCode for your Control Room.
- REST client or access to Automation Anywhere Swagger for your Control Room.
Note:
- The mfaCode is a Time-based One-Time Password (TOTP). We use two-factor authentication (2FA) which is a subset of the multi-factor authentication (MFA). Users need a 2FA code generator to create one-time codes or tokens.
- We recommend that you either disable 2FA in a role or create a separate role that does not use 2FA for use in scripts or other programmatic environments. You should use username and apiKey to authenticate when programmatically making API requests. Avoid using passwords in plain-text format to improve security.
- URL:
http://<your_control_room_url>/v1/authentication
- Method: POST
Two-factor authentication is supported only in Active Directory and non-Active Directory user environments; it is not supported for an SSO environment.
Procedure
Next steps
Users with the role to generate API keys can use an apiKey in
place of a passwordto generate and authentication token. See,
Enterprise 11: Create and assign API key generation role.
{
"username": "docs-2fa-vm3",
"apiKey": "-Jc$z@p?'E`X!lCmds/6Yn<7_?3}XYjks#55Gl,K",
"mfaCode": 879179
}