Using the Delinea Authenticator Application
Delinea Authenticator offers simple and secure multi-factor authentication (MFA) methods for your Delinea Platform tenant. You can approve MFA push notifications using device biometrics or copy the generated time-based one-time passwords (TOTP) specific to your account and tenant.
You can download the Delinea Authenticator app from the following sources:
Registering the Authenticator App
The Delinea Authenticator app allows you to register to one or more Delinea Platform tenants.
To register the Authenticator app with your Delinea Platform tenant, complete the following steps:
-
Go to your platform user profile and find the Applications tab, or access the app through the Delinea Marketplace.
-
Download the Delinea Authenticator app, if you haven't already. Follow the onboarding steps provided within the app to proceed.
-
Once you open the app, it prompts you to scan the registration QR code.
-
After you scan the QR code, you see your tenant represented within the app. You can change the name of the tenant if desired.
To register additional tenants, tap the QR code button on the home screen of the app and access the QR code in the Delinea Platform tenant.
Enabling Biometric Unlock
The Delinea Authenticator app requires biometric authentication. After you register the app, it prompts you to use facial ID; select Yes. Once enabled, the app performs a biometric check and allows you to proceed through application setup.
The app prompts you for biometric authentication at launch and during any additional authentication requests.
Turning on Push Notifications
During the onboarding process, the app prompts you to enable notifications to your device. Enable notifications to receive push alerts during an MFA event.
Once enabled, you receive push notifications along with in-app alerts containing the necessary information to approve the request.
Copying TOTP
The Delinea Authenticator app allows you to copy and paste TOTP codes specific to your platform tenant.
To copy TOTP codes from the Delinea Authenticator app, complete the following steps:
-
Launch the Delinea Authenticator app on your device.
-
Find the TOTP card for your desired tenant within the platform.
-
Click on the TOTP card to copy the code.
-
A confirmation message appears on the bottom of your screen indicating that the code has been copied to your clipboard.
Configuring Apps in Delinea Platform
As an administrator, you can configure the length of the generated TOTP codes in the Delinea Authenticator app. See Secret Server's TOTP for more information.
Also, as an administrator, you can require users to complete the Mobile Authenticator setup at login. This requirement will prompt users to register Delinea Authenticator for future log ins or set-up MFA requests. See Identity MFA Profiles for more information.
Unregistering the Delinea Authenticator App
You can unregister the Authenticator app from your tenant at anytime.
To unregister the Authenticator app from your tenant, complete the following steps:
-
Open the application settings.
-
Select your tenant to unregister.
-
Click Unregister.
To register your tenant again, follow Registering the Authenticator App.
To unregister the Authenticator App in platform, complete the following steps:
-
Open the Applications tab in platform.
-
Locate the application record and click the kabob menu on the card.
-
Then click Unregister.
Removing Authenticator Functionality from the Delinea Mobile Application
If you are an existing Delinea Mobile application user, you will no longer have authenticator functionality in Delinea Mobile if you have set up the Delinea Authenticator for your account. Any user who has not set up the Delinea Authenticator will still have authenticator functionality in Delinea Mobile.
Once users configure the Delinea Authenticator app, the system automatically sends all future MFA requests to it, eliminating the need for any additional user action.