ESET Online Help

Search English
Select the topic

Usage

The same 2FA process is followed for all supported Web Apps.

The operation of the Web Application Protection module can be verified as follows:

1.A user that has ESA 2FA enabled in the ESA Web Console is required for testing. The user must also be allowed to access the Web App.

2.Open the Web App in a desktop browser and authenticate using the Active Directory credentials of the test user.

3.The ESA authentication page should now appear, as per the figure below.

web-app-otp-page-1

 

a.If the user is enabled for SMS OTPs, an SMS will be sent containing an OTP that may be typed to authenticate.

b.If the user has installed the ESA mobile application on their phone, it may be used to generate an OTP to authenticate. OTPs are displayed in the mobile application with a space between the 3rd and 4th digits to improve readability. The Web Application Protection module strips whitespace, so a user may include or exclude whitespace when entering an OTP without affecting authentication.

c.If the user has installed the ESA mobile application on their phone and is allowed to use both OTP and Push authentication, the screen will indicate approval of a push notification or prompt the user for an OTP.

4.If a push notification is approved or a valid OTP is typed or FIDO is used to authenticate, the user will be redirected to the page they originally requested. The user will then be able to interact with the Web App.

5.If the push notification is not approved in 2 minutes, the user will be redirected to a page requesting an OTP. If an invalid OTP is typed, then an error message will be displayed and the user will not be allowed access to the web application.

 


note

Custom logo

If you want a custom logo to be displayed on the screen waiting to type OTP, or approve a notification instead of the default ESET Secure Authentication On-Prem logo, follow the steps below. All the steps are performed on the computer where compatible ESA component (Web App plugin, AD FS protection, Identity Provider Connector) is installed.

1.Save the desired logo as a .png image file. Recommended maximum dimension is 350px x 100px (width x height).

2.Place the logo to C:\ProgramData\ESET Secure Authentication On-Prem\Customization\ and name it "logo.png".