search
standards based protocols

2FA

Two-factor authentication (2FA) requires a user to provide two forms of identity to gain access to a protected resource or data. After a user supplies a username and a password, the app sends the user a confirmation code through SMS or Email. The user must enter that confirmation code before access to the app is granted.


How It Works

The following diagram depicts the sign-in flow:

alt text


In terms of the OpenID Connect (OIDC) specifications, the Web App is the Relying Party, and the ForgeRock Identity Cloud is the Authorization Server. See The OpenID Foundation Specifications.

For questions or feedback, contact us.