REL-ID Web Authentication Portal

🏛️ REL-ID Web Authentication Portal

🎯 Overview

The REL-ID Web Portal is the end-user facing web application that provides comprehensive authentication services. Users interact with this portal to set up credentials, authenticate into web applications, and manage their security settings.

---

🌐 Portal Capabilities

The REL-ID Web Portal supports the following core functionalities:

📱 Responsive Design

• Cross-Device Compatibility: All end-user facing pages and prompts use responsive design\
• Consistent Experience: Intuitive, consistent user experience across different devices
• Adaptive Interface: Sign-in and OAuth 2.0 consent requests automatically adapt to screen size
• Mobile Optimized: Fully functional on smartphones, tablets, and desktop computers

🌐 Browser Support

The following browsers are officially supported:\

• Chrome - Full feature support and optimization
• Firefox - Complete functionality across all features
• Safari - Full compatibility with all portal functions
• Edge - Comprehensive support for all authentication flows

---

🔐 User Authentication (aka User Login)

• OpenID Provider: Functions as OpenID Provider (OP) that receives authentication requests from customer websites via redirect flow

• Multi-Factor Authentication: Orchestrates authentication factors and responds with Access Token and ID Token after successful MFA validation

---

🚀 User Activation (Web Credential Activation)

• Self-Service Credential Setup: Web application that allows authorized users to set up authentication credentials through browser interface

• Multiple Factor Registration: Users can register various authentication factors (password, email OTP, SMS OTP) during the activation process

---

⚙️ User Portal (Security Settings)

• Browser Management: Provides authenticated users with features to view list of remembered browsers and forget/cancel Remember Me for specific browsers

• Self-Service Security: Users can independently manage their authentication settings and security preferences without administrative assistance

---

🔒 Supported Authentication Factors

🎯 Overview

REL-ID Web Authentication Module (WAM) supports multiple authentication factors to provide flexible and secure user authentication options.

📊 Authentication Factor Matrix

*** Note**: User receives this automatically as a result of enrolling in REL-ID enabled mobile app

---

📱 Mobile App Factors (Enterprise-Grade)

Factors requiring REL-ID mobile app provide the highest level of security and convenience:

🔔 REL-IDverify Push Notification

• Mobile App Required: User must be enrolled in REL-ID mobile application
• Real-time Authentication: Instant push notifications sent to registered device
• User Interaction: Simple tap-to-approve or deny authentication requests
• Automatic Setup: No additional enrollment steps required beyond mobile app registration

⏰ Time-based OTP (Mobile App)

• Offline Capability: Works without internet connection on mobile device\
• OATH TOTP Standard: Based on industry-standard Time-based One-Time Password protocol
• Automatic Configuration: Set up automatically during REL-ID mobile app enrollment
• High Security: Time-synchronized codes provide strong authentication

---

🌐 Web-Based Factors (User Configurable)

Factors that users can register and manage through web interface:

🔒 Password Authentication

• User Registration: Users must explicitly register password during activation\
• Policy Enforcement: Passwords must meet configured security requirements
• Self-Management: Users can update passwords through User Portal

📲 SMS-based OTP

• Mobile Number Required: Uses mobile number registered during web activation
• Real-time Delivery: OTP codes sent via SMS to registered number
• Cellular Connection: Requires cellular connectivity to receive SMS at login time

📧 Email-based OTP

• Email Address Required: Uses email address registered during web activation
• Email Delivery: OTP codes sent to registered email address
• Internet Connection: Requires internet connectivity to receive email at login time

---

🔔 REL-IDverify based Push Notification

• Mobile App Required: User must be enrolled in REL-ID based Mobile App and have data connection at login time

• Real-time Authentication: Provides tap-to-approve authentication using push notifications delivered to registered mobile device

---

⏰ Time-based OTP in offline Mobile App

• OATH TOTP Standard: Based on OATH TOTP standard, part of REL-ID Mobile App with automatic setup during enrollment
• Offline Capability: No additional steps required for user, works without internet connection using time-based code generation

---

🔒 Password

• User Registration Required: Uses password that user has registered during the activation process\
• Availability: Authenticator not available to use if password data is missing from user profile

---

📲 SMS-based OTP

• Mobile Number Required: Uses mobile number registered during web activation process, not available if data is missing\
• Cellular Connection: Requires user to have cellular connection to receive SMS at login time, REL-ID handles sending OTP via SMS

---

📧 Email-based OTP

• Email Address Required: Uses email address registered during web activation process, not available if data is missing\
• Internet Connectivity: Requires user to have internet connectivity to receive email at login time, REL-ID handles sending OTP via email

---

🔗 Quick Reference

📋 Portal Capabilities Summary

🔒 Authentication Factor Summary

📞 Support and Troubleshooting

• Browser Issues: Ensure using supported browsers (Chrome, Firefox, Safari, Edge)\
• Mobile App Factors: Verify REL-ID mobile app is properly enrolled and active
• SMS/Email Issues: Check network connectivity and delivery service availability
• Password Problems: Verify password meets security policy requirements

---