Azure

Install MFA Mobile and Web Service SDK

 , , ,

In this blog post we are going to continue to support the MFA user portal and extend it with the Mobile App application. The URL for the mobile apps can be found here:

Apple: https://itunes.apple.com/kn/app/multi-factor-authentication/id475844606?mt=8
Windows Store: http://www.windowsphone.com/nl-nl/store/app/multi-factor-auth/0a9691de-c0a1-44ee-ab96-6807f8322bd1
Google Play: https://play.google.com/store/apps/details?id=com.phonefactor.phonefactor&hl=en

First we need to install the web server sdk on the MFA server. So when I try to run the setup it tells me to enable the Basic authentication in the IIS.

image

Open the server manager and install Basic Authentication.

image

Now run the SDK installer again and it will continue

image

Select the website and specify a name for the virtual directory

image

And we are done. (at least with the SDK installer)

image

 

Now open a command prompt as admin ( PowerShell ) and browse to the installation folder of the MFA server
Then run MultiFactorAuthenticationMobileAppWebServiceSetup64.msi

image

Choose the site where it should be installed on. I recommend to make the virtual directory a short name as users might need to type it in their app when they want to activate their app token. (this is needed when QR scan is not possible)

image

Hit next and the installation will complete.

image

 

Now open IIS and right click on the MFA virtual directory and choose explore:

image

Open the web.config located in the folder with notepad.

Specify an user and password in the appSettings key:

WEB_SERVICE_SDK_AUTHENTICATION_USERNAME: username
WEB_SERVICE_SDK_AUTHENTICATION_PASSWORD: password

image

Also edit the url in the pfpaws.Properties.Settings in the same file.

<pfpaws.Properties.Settings>
<setting name=”pfpaws_pfwssdk_PfWsSdk” serializeAs=”String”>
<value>https://app01.sysctr.nl/MultiFactorAuthWebServiceSdk/PfWsSdk.asmx</value>
</setting>
</pfpaws.Properties.Settings>
</applicationSettings>

In the MFA Server console go to the mobile app and enter the Mobile App Web service URL:

image

Now when we go to the user portal and try to activate the mobile app we get the url we specified in the MFA server Console. Here you also see why it s user friendly to use a short virtual directory name.

image

Scan the QR code with your mobile or enter the url in the MFA Mobile app and you are good to go!