How to set up Image-Based Behavioral Identity Check (Image Note Assertion)
The feature introduces a simple, personalized challenge that verifies identity using user-specific choices made during registration.
Users select an image and provide a personal note during signup. During login, after entering their username, they must select the same image and re-enter the note. Access is granted only if both match the stored data.
This step adds a behavioral layer to authentication, enhancing security through personalized verification.
Configure the Image-Based Behavioral Identity Check
Log in to the ZTrust Admin Console and select the realm you want to configure.
Go to the Authentication section
Next, create a copy of the browser authentication flow and configure the Image Note Assertion step within it.
It should be configured as shown below.
Next, configure the flow for registration. Return to the Authentication section to proceed.
Navigate to the Required action tab
Then enable the Image note assertion like below
Now configuration is completed. We will attempt to register and log in to the self-service portal.
Registration
If a user does not exist in ztrust, please register as a user by providing below details.
After filling in all the required fields, the user is directed to the next page where they must select an image and provide a prompt.
For example, the user selects an image, enters a note, and then submits the information.
User successfully created in ZTrust.
Login
The user created in ZTrust will now attempt to log in with the same user. After successful validation, they are redirected to the next page for personal note verification.
If the personal note is incorrect, an error message will be displayed as shown below.
If the correct image and corresponding prompt are selected, ZTrust grants access to the user
User successfully logged into to the SSP
Last updated