Axidian Key

info

Files for the Axidian Key Provider installation are located at axidian\Axidian Providers\Axidian Key Provider\<Version number>\.

AuthProviders.AxidianKey.msi: The installation package of Axidian Key Provider.

About Axidian Key

info

Axidian Key Provider requires the installation of Axidian Key Server.

Users must have the Axidian Key application installed for authentication.

Install the provider

1. To install Axidian Key, run the AuthProviders.AxidianKey.msi installer.
2. After the installation is complete, restart the system. If the installation wizard prompts you to restart the system, confirm this action.
3. To remove or restore the product, open the Control panel menu and use the standard procedure for the supported operating systems.

Configure the provider

1. Run Windows Registry Editor.

2. In the HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Axidian-ID\BSPs section, create the Axidian Key key with the nested value.

3. In the Axidian Key section, create a string parameter ServerUrl and specify the URL of your Key Server.

   info

   Specify the URL from the ServerUrl parameter of the Key Server configuration file.

4. Restart the IIS server.

Configure the application

Add and configure a certificate

info

Certificate configuration is required if you use SSL to connect to Key Server.

1. Convert the root certificate to the .cer or .crt format. You cannot use .pfx as root certificate.
2. Send the certificate to a smartphone and install it.
3. Add the certificate to trusted ones.
   • For IOS devices:
     1. Go to Settings → General → About → Certificates Trust Settings.
     2. In Enable Full Trust for root certificates, mark the installed certificate as trusted.
   • For Android devices:
     1. Go to Settings → Security and lock screen → Encryption and credentials.
     2. Verify that the certificate is successfully added to the User credentials section.
4. Verify that the certificate is successfully added to the Trusted credentials section.

Install the mobile application

1. Download the Axidian Key application and enable sending notifications.

   • For IOS: https://apps.apple.com/ru/app/axidian-key/id6738424456?l=en-GB
   • For Android: https://play.google.com/store/apps/details?id=com.axidian.key&pcampaignid=web_share&pli=1

2. Specify the password to log in to the application.

3. In the Keys window, click the plus + icon to add a key.

4. Give the application a permission to use camera and scan the QR code.

5. Confirm the creation of certificate request.

6. Confirm the request to install the certificate.

7. The key appears in the Keys window, if added correctly.

   To remove a key from the application, swipe the key to the left.

8. When trying to remove an Axidian Key authenticator for a user, they receive a push notification of registered key removal. The key is removed from the application after the operation is confirmed.

Configuration:

1. Open the Key Server configuration file Web.config.

2. Add the following code to the file. Also, configure the certificate if you use SSL to connect to Key Server.

   Example

   <trustedClientsSettings>
       <trustedClients>
           <add id="1" />
       </trustedClients>
       </trustedClientsSettings>

3. In the HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Axidian-ID\BSPs\AxidianKey section on the computer with the Axidian Key provider installed, create a string parameter ClientId and specify the id value.

4. After the changes are applied, the user receives push notifications of the removal.