After the pre-requisites to connect to Starling are met, connect HTTP Module to Starling using the Starling Join option available for One Identity on-premises products.
To connect and configure One Identity Starling for authentication
The Connect Starling window is displayed.
You are redirected to the One Identity Starling authentication window.
NOTE: If you are a member of more than one Starling organization, use the drop-down to select the organization to which you want to connect.
After successful authentication, you are redirected to the One Identity Starling Two-Factor HTTP Module Configuration Connect Starling window.
NOTE:To connect to a different organization in your One Identity Starling account, click Change Account.
If the connection is unsuccessful, a message is displayed providing the details of the error and the previously connected account is continued to be used. In such a case, it is recommended to contact support for any help.
NOTE: If there are any network issues or if the Starling is down, your account may get disconnected. In such cases, click Reconnect. To test the validity of your account connection, click Test connection.
Push notification enables you to Approve or Deny login requests. These requests facilitate an end-to-end encrypted communication between the application and a secured authentication service. Accurate configuration of the push notification allows you to Approve or Deny a login attempt.
To configure the push notification settings
Push Notifications page is displayed.
The message entered must be in the range of 10 to 50 characters.
Use the Active Directory tab to configure the user repository details.
The following are the pre requisites to configure user repository
To configure the repository for data stored in Active Directory
The Starling Two-Factor HTTP Module allows you to protect your websites. You can add the websites that you want to protect in the Protected Server Sites tab. The tab lists the websites in the Microsoft Web Server (IIS). You can select the required websites that have to be protected. You can enable protection for one or more websites both at server level and at the application level by selecting the appropriate check boxes.
To configure the protected server sites
To reflect the changes made during configuration after clicking Save Settings, Starling Two-Factor HTTP Module prompts you to restart IIS. You can click Yes to reflect the changes.
NOTE: Web applications having dependent sites will also show Starling Two-Factor authentication page, since they internally access the same URL.
For example, if the user protects OWA web application using Starling Two-Factor authentication, ECP or all dependent websites that also access OWA internally will also see the Starling Two-Factor authentication page. Access control is determined by the most specific path match found.