Gateway IPs

List

Retrieve Criteria Gateway IP List of a session server with the specified ID.

GET/api/MFA/{id}/Criteria/GatewayIPs

Path parameters

id*integer (int32)

The ID of a session server for which to retrieve the Criteria settings.

Response

Success

Body

gatewayIPnullable string

The gateway IP.

Request

const response = await fetch('/api/MFA/{id}/Criteria/GatewayIPs', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

Response

[
  {
    "gatewayIP": "text"
  }
]

Add

Add a gateway IP to the Gateway IP List of the Criteria settings.

POST/api/MFA/{id}/Criteria/GatewayIPs

Path parameters

id*integer (int32)

The ID of a session server for which to modify the Criteria settings.

Body

Gateway IP configuration.

ipnullable string

The IP of the gateway to add to the Criteria.

gatewayIdnullable integer (int32)

The ID of the gateway to add to the Criteria.

Response

Created

Request

const response = await fetch('/api/MFA/{id}/Criteria/GatewayIPs', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({}),
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

Remove

Remove a gateway IP from the Gateway IP List of the Criteria settings.

DELETE/api/MFA/{id}/Criteria/GatewayIPs

Path parameters

id*integer (int32)

The ID of a session server for which to modify the Criteria settings.

Body

Gateway IP configuration.

ip*nullable string

The IP of the gateway to remove from the Criteria.

Response

No Content

Request

const response = await fetch('/api/MFA/{id}/Criteria/GatewayIPs', {
    method: 'DELETE',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "ip": "text"
    }),
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

IPs

List

Retrieve Criteria IP List of a session server with the specified ID.

GET/api/MFA/{id}/Criteria/IPs

Path parameters

id*integer (int32)

The ID of a session server for which to retrieve the Criteria settings.

Response

Success

Body

iPv4snullable array of IPv4CriteriaEntry (object)

IPv4 criteria list

fromnullable string

tonullable string

iPv6snullable array of IPv6CriteriaEntry (object)

IPv6 criteria list

fromnullable string

tonullable string

Request

const response = await fetch('/api/MFA/{id}/Criteria/IPs', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

Response

{
  "iPv4s": [
    {
      "from": "text",
      "to": "text"
    }
  ],
  "iPv6s": [
    {
      "from": "text",
      "to": "text"
    }
  ]
}

Add

Add an IP to the IP List of the Criteria settings.

POST/api/MFA/{id}/Criteria/IPs

Path parameters

id*integer (int32)

The ID of a session server for which to modify the Criteria settings.

Body

IP configuration.

ip*nullable string

Value that represents the IP

ipType*IPVersion (enum)

IP Version

0 = Version4,1 = Version6,2 = BothVersions

Response

Created

Request

const response = await fetch('/api/MFA/{id}/Criteria/IPs', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "ip": "text",
      "ipType": [
        "0 = Version4",
        "1 = Version6",
        "2 = BothVersions"
      ]
    }),
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

Remove

Remove an IP from the IP List of the Criteria settings.

DELETE/api/MFA/{id}/Criteria/IPs

Path parameters

id*integer (int32)

The ID of a session server for which to modify the Criteria settings.

Body

IP configuration.

ip*nullable string

Value that represents the IP

ipType*IPVersion (enum)

IP Version

0 = Version4,1 = Version6,2 = BothVersions

Response

No Content

Request

const response = await fetch('/api/MFA/{id}/Criteria/IPs', {
    method: 'DELETE',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "ip": "text",
      "ipType": [
        "0 = Version4",
        "1 = Version6",
        "2 = BothVersions"
      ]
    }),
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

Check Connection

Checks Connection of the Multi Factor Authentication.

GET/api/MFA/CheckConnection

Query parameters

Serverstring

The server of the second level authentication provider.

BackupServerstring

The backup server of the second level authentication provider.

Portinteger (int32)

The port number of the second level authentication provider..

HAModeHAMode (enum)

High Availability Mode

0 = Parallel,1 = Serial

Timeoutinteger (int32)

Connection timeout (in seconds).

Retriesinteger (int32)

Number of retries.

Lengthinteger (int32)

PasswordEncodingPasswordEncoding (enum)

Password Encoding

0 = PAP,1 = CHAP

Response

Success

Request

const response = await fetch('/api/MFA/CheckConnection', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

List

Retrieve Criteria Device List of a session server with the specified ID.

GET/api/MFA/{id}/Criteria/Devices

Path parameters

id*integer (int32)

The ID of a session server for which to retrieve the Criteria settings.

Response

Success

Body

clientnullable string

The name of the client device.

Request

const response = await fetch('/api/MFA/{id}/Criteria/Devices', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

Response

[
  {
    "client": "text"
  }
]

Add

Add a device to the Device List of the Criteria settings.

POST/api/MFA/{id}/Criteria/Devices

Path parameters

id*integer (int32)

The ID of a session server for which to modify the Criteria settings.

Body

Device configuration.

clientDeviceName*nullable string

The name of the client device to add to the Criteria.

Response

Created

Request

const response = await fetch('/api/MFA/{id}/Criteria/Devices', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "clientDeviceName": "text"
    }),
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

Remove

Remove a device from the Device List of the Criteria settings.

DELETE/api/MFA/{id}/Criteria/Devices

Path parameters

id*integer (int32)

The ID of a session server for which to modify the Criteria settings.

Body

Device configuration.

clientDeviceName*nullable string

The name of the client device to remove from the Criteria.

Response

No Content

Request

const response = await fetch('/api/MFA/{id}/Criteria/Devices', {
    method: 'DELETE',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "clientDeviceName": "text"
    }),
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

Get Auto Info

Retrieve information about MFA Radius Auto Info List.

GET/api/MFA/{id}/RadiusAutoInfo

Path parameters

id*integer (int32)

The ID of a MFA for which to retrieve the MFA Radius Auto Info List.

Response

Success

Body

idinteger (int32)

ID of the object.

priorityinteger (int32)

Priority of the object.

autoSendboolean

Whether the RADIUS Automation autoSend is enabled or not

commandnullable string

RADIUS Automation command

enabledboolean

Whether RADIUS Automation is enabled/disabled

imageImageType (enum)

Image Type

100 = Alert,101 = Message,102 = Email,103 = Call,104 = Chat,105 = Flag

descriptionnullable string

RADIUS Description

actionMessagenullable string

RADIUS Action Message

titlenullable string

RADIUS Automation title

Request

const response = await fetch('/api/MFA/{id}/RadiusAutoInfo', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

Response

{
  "autoSend": false,
  "command": "text",
  "enabled": false,
  "image": [
    "100 = Alert",
    "101 = Message",
    "102 = Email",
    "103 = Call",
    "104 = Chat",
    "105 = Flag"
  ],
  "description": "text",
  "actionMessage": "text",
  "title": "text"
}

Add Auto Info

Add a new Radius Auto Info to a site.

POST/api/MFA/{id}/RadiusAutoInfo

Path parameters

id*integer (int32)

MFA settings

Body

MFA Radius Auto Info

command*nullable string

RADIUS Automation command

enabledboolean

Whether the RADIUS Automation is enabled/disabled

imageImageType (enum)

Image Type

100 = Alert,101 = Message,102 = Email,103 = Call,104 = Chat,105 = Flag

title*nullable string

RADIUS Automation title

actionMessagenullable string

RADIUS Automation action message

descriptionnullable string

RADIUS Automation description

Response

Created

Body

idinteger (int32)

ID of the object.

priorityinteger (int32)

Priority of the object.

autoSendboolean

Whether the RADIUS Automation autoSend is enabled or not

commandnullable string

RADIUS Automation command

enabledboolean

Whether RADIUS Automation is enabled/disabled

imageImageType (enum)

Image Type

100 = Alert,101 = Message,102 = Email,103 = Call,104 = Chat,105 = Flag

descriptionnullable string

RADIUS Description

actionMessagenullable string

RADIUS Action Message

titlenullable string

RADIUS Automation title

Request

const response = await fetch('/api/MFA/{id}/RadiusAutoInfo', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "command": "text",
      "title": "text"
    }),
});
const data = await response.json();

Response

{
  "autoSend": false,
  "command": "text",
  "enabled": false,
  "image": [
    "100 = Alert",
    "101 = Message",
    "102 = Email",
    "103 = Call",
    "104 = Chat",
    "105 = Flag"
  ],
  "description": "text",
  "actionMessage": "text",
  "title": "text"
}

Update Auto Info

Update Radius Auto Info from a site.

PUT/api/MFA/{id}/RadiusAutoInfo/{radiusautoid}

Path parameters

id*integer (int32)

The ID of a MFA to update a RadiusAutoInfo from the site.

radiusautoid*integer (int32)

The ID of a RadiusAutoInfo to update.

Body

Radius Auto Info entry.

autoSendnullable boolean

Whether the RADIUS Automation autoSend is enabled or not

commandnullable string

RADIUS Automation command

enablednullable boolean

Whether the RADIUS Automation is enabled/disabled

imageImageType (enum)

Image Type

100 = Alert,101 = Message,102 = Email,103 = Call,104 = Chat,105 = Flag

descriptionnullable string

RADIUS Automation description

actionMessagenullable string

RADIUS Automation action message

newTitlenullable string

RADIUS Automation title

priorityMoveDirection (enum)

Move Direction.

0 = Up,1 = Down

Response

No Content

Request

const response = await fetch('/api/MFA/{id}/RadiusAutoInfo/{radiusautoid}', {
    method: 'PUT',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({}),
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

Delete Auto Info

Delete a Radius Auto Info from a site.

DELETE/api/MFA/{id}/RadiusAutoInfo/{radiusautoid}

Path parameters

id*integer (int32)

The ID of a MFA to remove a RadiusAutoInfo from the site.

radiusautoid*integer (int32)

The ID of a RadiusAutoInfo to remove from the site.

Response

No Content

Request

const response = await fetch('/api/MFA/{id}/RadiusAutoInfo/{radiusautoid}', {
    method: 'DELETE',
    headers: {},
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

Deepnet

Create

Create a new Deepnet MFA.

POST/api/MFA/Deepnet

Body

MFA settings

name*nullable string

The name of the target Multi Factor Authentication. This must be the actual Multi Factor Authentication name used in the RAS farm.

siteIdinteger (int32)

Site ID in which to modify the specified Multi Factor Authentication. If the parameter is omitted, the site ID of the Licensing Server will be used.

descriptionnullable string

A user-defined Multi Factor Authentication description.

enabledboolean

Enable or disable the Multi Factor Authentication upon creation. If the parameter is omitted, the Multi Factor Authentication is initialised as Disabled.

activateEmailnullable boolean

Whether the activation email is enabled or disabled.

activateSMSnullable boolean

Whether the activation SMS is enabled or disabled.

appnullable string

A value that represents the application name.

appIDnullable string

A value that represents the application ID.

authModeDeepnetAuthMode (enum)

Deepnet Authentication Mode

0 = MandatoryForAllUsers,1 = CreateTokenForDomainAuthenticatedUsers,2 = UsersWithDeepnetAcc

deepnetAgent*nullable string

A value that represents the name of Deepnet Agent.

defaultDomainnullable string

A value that represents the Default Domain.

sslnullable boolean

Whether SSL is allowed or not.

deepnetServer*nullable string

The server of the second level authentication provider.

deepnetPort*nullable integer (int32)

The port number of the second level authentication provider.

tokenTypeTokenType (enum)

Token Type

1 = MobileID,3 = QuickID

Response

Created

Body

idinteger (int32)

ID of the object.

adminCreatenullable string

User who created the object.

adminLastModnullable string

User who last modified the object.

timeCreatestring (date-time)

Time when the object was created.

timeLastModstring (date-time)

Time when the object was last modified.

namenullable string

Name

siteIdinteger (int32)

Site ID

descriptionnullable string

Description

enabledboolean

Whether MFA provider is enabled or not.

typeMFAType (enum)

Provider Type

1 = Deepnet,2 = SafeNet,3 = Radius,4 = AzureRadius,5 = DuoRadius,6 = FortiRadius,7 = TekRadius,8 = GAuthTOTP,9 = TOTP,10 = MicrosoftTOTP,11 = EmailOTP

inheritDefaultCriteriaSettingsboolean

If true default criteria restriction settings will be inherited.

criteriaMFACriteria (object)

MFA Criteria

securityPrincipalsSecurityPrincipalsCriteria (object)

Security Principals Criteria

enabledboolean

Whether the Security Principals Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of SecurityPrincipalCriteriaEntry (object)

User criteria list

accountnullable string

The name of the user/group account the filter is added to.

typeUserType (enum)

User Type

1 = User,2 = Group,3 = ForeignSecurityPrincipal,4 = Computer

sidnullable string

The SID of the user/group account the filter is added to.

gatewaysGatewaysCriteria (object)

Gateways Criteria

enabledboolean

Whether the Gateways Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of GatewayCriteriaEntry (object)

Gateway criteria list

gatewayIPnullable string

The gateway IP.

oSsOSsCriteria (object)

OS Criteria Settings

enabledboolean

Whether the OSs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedOSesAllowedOperatingSystems (object)

Allowed Operating Systems

chromeboolean

Whether Chrome is allowed or not.

androidboolean

Whether Android is allowed or not.

webClientboolean

Whether Web Client is allowed or not.

iOSboolean

Whether iOS is allowed or not.

linuxboolean

Whether Linux is allowed or not.

macboolean

Whether MAC OS is allowed or not.

wyseboolean

Whether Wyse is allowed or not.

windowsboolean

Whether Windows is allowed or not.

iPsIPsCriteria (object)

IPs Criteria

enabledboolean

Whether the IPs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedIPsAllowedIPsCriteria (object)

Allowed IPs Criteria

iPv4snullable array of IPv4CriteriaEntry (object)

IPv4 criteria list

fromnullable string

tonullable string

iPv6snullable array of IPv6CriteriaEntry (object)

IPv6 criteria list

fromnullable string

tonullable string

hardwareIDsHardwareIDsCriteria (object)

Hardware IDs Criteria

enabledboolean

Whether the Hardware IDs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of HardwareIDCriteriaEntry (object)

Hardware IDs criteria list

hardwareIDnullable string

The hardware ID.

accessAccessType (enum)

Access type options

0 = DenyCriteriaWhen,1 = AllowCriteriaWhen

devicesDevicesCriteria (object)

Devices Criteria

enabledboolean

Whether the Devices Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of ClientDeviceCriteriaEntry (object)

Client criteria list

clientnullable string

The name of the client device.

activateEmailboolean

Whether the activation email is enabled or disabled.

activateSMSboolean

Whether the activation SMS is enabled or disabled.

appnullable string

A value that represents the application name.

appIDnullable string

A value that represents the application ID.

authModeDeepnetAuthMode (enum)

Deepnet Authentication Mode

0 = MandatoryForAllUsers,1 = CreateTokenForDomainAuthenticatedUsers,2 = UsersWithDeepnetAcc

deepnetAgentnullable string

A value that represents the name of Deepnet Agent.

defaultDomainnullable string

A value that represents the Default Domain.

sslboolean

Whether SSL is allowed or not.

servernullable string

The server of the second level authentication provider.

portinteger (int32)

The port number of the second level authentication provider.

tokenTypeTokenType (enum)

Token Type

1 = MobileID,3 = QuickID

Request

const response = await fetch('/api/MFA/Deepnet', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "deepnetAgent": "text",
      "deepnetServer": "text",
      "name": "text"
    }),
});
const data = await response.json();

Response

{
  "adminCreate": "text",
  "adminLastMod": "text",
  "timeCreate": "2024-11-07T10:03:12.197Z",
  "timeLastMod": "2024-11-07T10:03:12.197Z",
  "name": "text",
  "description": "text",
  "enabled": false,
  "type": [
    "1 = Deepnet",
    "2 = SafeNet",
    "3 = Radius",
    "4 = AzureRadius",
    "5 = DuoRadius",
    "6 = FortiRadius",
    "7 = TekRadius",
    "8 = GAuthTOTP",
    "9 = TOTP",
    "10 = MicrosoftTOTP",
    "11 = EmailOTP"
  ],
  "inheritDefaultCriteriaSettings": false,
  "criteria": {
    "securityPrincipals": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "account": "text",
          "type": [
            "1 = User",
            "2 = Group",
            "3 = ForeignSecurityPrincipal",
            "4 = Computer"
          ],
          "sid": "text"
        }
      ]
    },
    "gateways": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "gatewayIP": "text"
        }
      ]
    },
    "oSs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "allowedOSes": {
        "chrome": false,
        "android": false,
        "webClient": false,
        "iOS": false,
        "linux": false,
        "mac": false,
        "wyse": false,
        "windows": false
      }
    },
    "iPs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "allowedIPs": {
        "iPv4s": [
          {
            "from": "text",
            "to": "text"
          }
        ],
        "iPv6s": [
          {
            "from": "text",
            "to": "text"
          }
        ]
      }
    },
    "hardwareIDs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "hardwareID": "text"
        }
      ]
    },
    "access": [
      "0 = DenyCriteriaWhen",
      "1 = AllowCriteriaWhen"
    ],
    "devices": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "client": "text"
        }
      ]
    }
  },
  "activateEmail": false,
  "activateSMS": false,
  "app": "text",
  "appID": "text",
  "authMode": [
    "0 = MandatoryForAllUsers",
    "1 = CreateTokenForDomainAuthenticatedUsers",
    "2 = UsersWithDeepnetAcc"
  ],
  "deepnetAgent": "text",
  "defaultDomain": "text",
  "ssl": false,
  "server": "text",
  "tokenType": [
    "1 = MobileID",
    "3 = QuickID"
  ]
}

Update

Update the MFA Deepnet settings.

PUT/api/MFA/Deepnet/{id}

Path parameters

id*integer (int32)

The id for which to modify the MFA settings.

Body

MFA settings.

namenullable string

The new name of the target multi-factor authentication .

descriptionnullable string

A user-defined multi-factor authentication description.

enablednullable boolean

Enable or disable the specified multi-factor authentication in a site.

inheritDefaultCriteriaSettingsnullable boolean

If true default criteria settings will be inherited.

Response

No Content

Request

const response = await fetch('/api/MFA/Deepnet/{id}', {
    method: 'PUT',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({}),
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

Duplicate

Duplicate a Multi Factor Authentication.

POST/api/MFA/{id}/Duplicate

Path parameters

id*integer (int32)

The ID of the Multi Factor Authentication to duplicate

Response

Created

Body

idinteger (int32)

ID of the object.

adminCreatenullable string

User who created the object.

adminLastModnullable string

User who last modified the object.

timeCreatestring (date-time)

Time when the object was created.

timeLastModstring (date-time)

Time when the object was last modified.

namenullable string

Name

siteIdinteger (int32)

Site ID

descriptionnullable string

Description

enabledboolean

Whether MFA provider is enabled or not.

typeMFAType (enum)

Provider Type

1 = Deepnet,2 = SafeNet,3 = Radius,4 = AzureRadius,5 = DuoRadius,6 = FortiRadius,7 = TekRadius,8 = GAuthTOTP,9 = TOTP,10 = MicrosoftTOTP,11 = EmailOTP

inheritDefaultCriteriaSettingsboolean

If true default criteria restriction settings will be inherited.

criteriaMFACriteria (object)

MFA Criteria

securityPrincipalsSecurityPrincipalsCriteria (object)

Security Principals Criteria

enabledboolean

Whether the Security Principals Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of SecurityPrincipalCriteriaEntry (object)

User criteria list

accountnullable string

The name of the user/group account the filter is added to.

typeUserType (enum)

User Type

1 = User,2 = Group,3 = ForeignSecurityPrincipal,4 = Computer

sidnullable string

The SID of the user/group account the filter is added to.

gatewaysGatewaysCriteria (object)

Gateways Criteria

enabledboolean

Whether the Gateways Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of GatewayCriteriaEntry (object)

Gateway criteria list

gatewayIPnullable string

The gateway IP.

oSsOSsCriteria (object)

OS Criteria Settings

enabledboolean

Whether the OSs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedOSesAllowedOperatingSystems (object)

Allowed Operating Systems

chromeboolean

Whether Chrome is allowed or not.

androidboolean

Whether Android is allowed or not.

webClientboolean

Whether Web Client is allowed or not.

iOSboolean

Whether iOS is allowed or not.

linuxboolean

Whether Linux is allowed or not.

macboolean

Whether MAC OS is allowed or not.

wyseboolean

Whether Wyse is allowed or not.

windowsboolean

Whether Windows is allowed or not.

iPsIPsCriteria (object)

IPs Criteria

enabledboolean

Whether the IPs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedIPsAllowedIPsCriteria (object)

Allowed IPs Criteria

iPv4snullable array of IPv4CriteriaEntry (object)

IPv4 criteria list

fromnullable string

tonullable string

iPv6snullable array of IPv6CriteriaEntry (object)

IPv6 criteria list

fromnullable string

tonullable string

hardwareIDsHardwareIDsCriteria (object)

Hardware IDs Criteria

enabledboolean

Whether the Hardware IDs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of HardwareIDCriteriaEntry (object)

Hardware IDs criteria list

hardwareIDnullable string

The hardware ID.

accessAccessType (enum)

Access type options

0 = DenyCriteriaWhen,1 = AllowCriteriaWhen

devicesDevicesCriteria (object)

Devices Criteria

enabledboolean

Whether the Devices Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of ClientDeviceCriteriaEntry (object)

Client criteria list

clientnullable string

The name of the client device.

Request

const response = await fetch('/api/MFA/{id}/Duplicate', {
    method: 'POST',
    headers: {},
});
const data = await response.json();

Response

{
  "adminCreate": "text",
  "adminLastMod": "text",
  "timeCreate": "2024-11-07T10:03:12.197Z",
  "timeLastMod": "2024-11-07T10:03:12.197Z",
  "name": "text",
  "description": "text",
  "enabled": false,
  "type": [
    "1 = Deepnet",
    "2 = SafeNet",
    "3 = Radius",
    "4 = AzureRadius",
    "5 = DuoRadius",
    "6 = FortiRadius",
    "7 = TekRadius",
    "8 = GAuthTOTP",
    "9 = TOTP",
    "10 = MicrosoftTOTP",
    "11 = EmailOTP"
  ],
  "inheritDefaultCriteriaSettings": false,
  "criteria": {
    "securityPrincipals": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "account": "text",
          "type": [
            "1 = User",
            "2 = Group",
            "3 = ForeignSecurityPrincipal",
            "4 = Computer"
          ],
          "sid": "text"
        }
      ]
    },
    "gateways": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "gatewayIP": "text"
        }
      ]
    },
    "oSs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "allowedOSes": {
        "chrome": false,
        "android": false,
        "webClient": false,
        "iOS": false,
        "linux": false,
        "mac": false,
        "wyse": false,
        "windows": false
      }
    },
    "iPs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "allowedIPs": {
        "iPv4s": [
          {
            "from": "text",
            "to": "text"
          }
        ],
        "iPv6s": [
          {
            "from": "text",
            "to": "text"
          }
        ]
      }
    },
    "hardwareIDs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "hardwareID": "text"
        }
      ]
    },
    "access": [
      "0 = DenyCriteriaWhen",
      "1 = AllowCriteriaWhen"
    ],
    "devices": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "client": "text"
        }
      ]
    }
  }
}

List

Retrieve Criteria Security Principal List of a session server with the specified ID.

GET/api/MFA/{id}/Criteria/SecurityPrincipals

Path parameters

id*integer (int32)

The ID of a session server for which to retrieve the Criteria settings.

Response

Success

Body

accountnullable string

The name of the user/group account the filter is added to.

typeUserType (enum)

User Type

1 = User,2 = Group,3 = ForeignSecurityPrincipal,4 = Computer

sidnullable string

The SID of the user/group account the filter is added to.

Request

const response = await fetch('/api/MFA/{id}/Criteria/SecurityPrincipals', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

Response

[
  {
    "account": "text",
    "type": [
      "1 = User",
      "2 = Group",
      "3 = ForeignSecurityPrincipal",
      "4 = Computer"
    ],
    "sid": "text"
  }
]

Add

Add a user, group or machine to the Security Principal List of the Criteria settings.

POST/api/MFA/{id}/Criteria/SecurityPrincipals

Path parameters

id*integer (int32)

The ID of a session server for which to modify the Criteria settings.

Body

SecurityPrincipal configuration.

accountnullable string

The name of the account to add to the Criteria.

sidnullable string

The SID of the account to add to the Criteria.

Response

Created

Request

const response = await fetch('/api/MFA/{id}/Criteria/SecurityPrincipals', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({}),
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

Remove

Remove a user, group or machine from the Security Principal List of the Criteria settings.

DELETE/api/MFA/{id}/Criteria/SecurityPrincipals

Path parameters

id*integer (int32)

The ID of a session server for which to modify the Criteria settings.

Body

SecurityPrincipal configuration.

accountnullable string

The name of the account to remove from the Criteria.

sidnullable string

The SID of the account to remove from the Criteria.

Response

No Content

Request

const response = await fetch('/api/MFA/{id}/Criteria/SecurityPrincipals', {
    method: 'DELETE',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({}),
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

Create

Create a new Email OTP MFA.

POST/api/MFA/EmailOTP

Body

MFA settings

name*nullable string

The name of the target Multi Factor Authentication. This must be the actual Multi Factor Authentication name used in the RAS farm.

siteIdinteger (int32)

Site ID in which to modify the specified Multi Factor Authentication. If the parameter is omitted, the site ID of the Licensing Server will be used.

descriptionnullable string

A user-defined Multi Factor Authentication description.

enabledboolean

Enable or disable the Multi Factor Authentication upon creation. If the parameter is omitted, the Multi Factor Authentication is initialised as Disabled.

displayName*nullable string

RADIUS type name.

userEnrollmentUserEnrollment (enum)

User Enrollment

0 = Allow,1 = AllowUntil,2 = DoNotAllow

showInformationForUnenrolledUsersShowInformationForUnenrolledUsers (enum)

Show information for unenrolled users

0 = Always,1 = IfEnrollmentIsAllowed,2 = Never

untilDateTimenullable string (date-time)

Allow User Enrollment until date/time

otpLifespanSecnullable integer (int32)

The lifespan of the OTP (seconds)

externalEmailStorageExternalEmailStorage (enum)

External email storage

0 = RASDatabase,1 = ADMail,2 = ADCustom

emailContentnullable string

The content of the email. Possible variables: %OTP%, %DURATION%

emailSubjectnullable string

The subject of the email. Possible variables: %OTP%

userMessagePromptnullable string

User message prompt

adCustomAttributenullable string

AD Custom Attribute

allowEnrollExternalEmailnullable boolean

Allow enrollment of external email

otpLengthnullable integer (int32)

The length of the OTP generated

Response

Created

Body

idinteger (int32)

ID of the object.

adminCreatenullable string

User who created the object.

adminLastModnullable string

User who last modified the object.

timeCreatestring (date-time)

Time when the object was created.

timeLastModstring (date-time)

Time when the object was last modified.

namenullable string

Name

siteIdinteger (int32)

Site ID

descriptionnullable string

Description

enabledboolean

Whether MFA provider is enabled or not.

typeMFAType (enum)

Provider Type

1 = Deepnet,2 = SafeNet,3 = Radius,4 = AzureRadius,5 = DuoRadius,6 = FortiRadius,7 = TekRadius,8 = GAuthTOTP,9 = TOTP,10 = MicrosoftTOTP,11 = EmailOTP

inheritDefaultCriteriaSettingsboolean

If true default criteria restriction settings will be inherited.

criteriaMFACriteria (object)

MFA Criteria

securityPrincipalsSecurityPrincipalsCriteria (object)

Security Principals Criteria

enabledboolean

Whether the Security Principals Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of SecurityPrincipalCriteriaEntry (object)

User criteria list

accountnullable string

The name of the user/group account the filter is added to.

typeUserType (enum)

User Type

1 = User,2 = Group,3 = ForeignSecurityPrincipal,4 = Computer

sidnullable string

The SID of the user/group account the filter is added to.

gatewaysGatewaysCriteria (object)

Gateways Criteria

enabledboolean

Whether the Gateways Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of GatewayCriteriaEntry (object)

Gateway criteria list

gatewayIPnullable string

The gateway IP.

oSsOSsCriteria (object)

OS Criteria Settings

enabledboolean

Whether the OSs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedOSesAllowedOperatingSystems (object)

Allowed Operating Systems

chromeboolean

Whether Chrome is allowed or not.

androidboolean

Whether Android is allowed or not.

webClientboolean

Whether Web Client is allowed or not.

iOSboolean

Whether iOS is allowed or not.

linuxboolean

Whether Linux is allowed or not.

macboolean

Whether MAC OS is allowed or not.

wyseboolean

Whether Wyse is allowed or not.

windowsboolean

Whether Windows is allowed or not.

iPsIPsCriteria (object)

IPs Criteria

enabledboolean

Whether the IPs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedIPsAllowedIPsCriteria (object)

Allowed IPs Criteria

iPv4snullable array of IPv4CriteriaEntry (object)

IPv4 criteria list

fromnullable string

tonullable string

iPv6snullable array of IPv6CriteriaEntry (object)

IPv6 criteria list

fromnullable string

tonullable string

hardwareIDsHardwareIDsCriteria (object)

Hardware IDs Criteria

enabledboolean

Whether the Hardware IDs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of HardwareIDCriteriaEntry (object)

Hardware IDs criteria list

hardwareIDnullable string

The hardware ID.

accessAccessType (enum)

Access type options

0 = DenyCriteriaWhen,1 = AllowCriteriaWhen

devicesDevicesCriteria (object)

Devices Criteria

enabledboolean

Whether the Devices Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of ClientDeviceCriteriaEntry (object)

Client criteria list

clientnullable string

The name of the client device.

displayNamenullable string

Display name

userEnrollmentUserEnrollment (enum)

User Enrollment

0 = Allow,1 = AllowUntil,2 = DoNotAllow

showInformationForUnenrolledUsersShowInformationForUnenrolledUsers (enum)

Show information for unenrolled users

0 = Always,1 = IfEnrollmentIsAllowed,2 = Never

untilDateTimestring (date-time)

Allow User Enrollment until date/time

otpLifespanSecinteger (int32)

The lifespan of the OTP (seconds)

externalEmailStorageExternalEmailStorage (enum)

External email storage

0 = RASDatabase,1 = ADMail,2 = ADCustom

emailContentnullable string

The content of the email. Possible variables: %OTP%, %DURATION%

emailSubjectnullable string

The subject of the email. Possible variables: %OTP%

userMessagePromptnullable string

User message prompt

adCustomAttributenullable string

AD Custom Attribute

allowEnrollExternalEmailboolean

Allow enrollment of external email

otpLengthinteger (int32)

The length of the OTP generated

Request

const response = await fetch('/api/MFA/EmailOTP', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "displayName": "text",
      "name": "text"
    }),
});
const data = await response.json();

Response

{
  "adminCreate": "text",
  "adminLastMod": "text",
  "timeCreate": "2024-11-07T10:03:12.197Z",
  "timeLastMod": "2024-11-07T10:03:12.197Z",
  "name": "text",
  "description": "text",
  "enabled": false,
  "type": [
    "1 = Deepnet",
    "2 = SafeNet",
    "3 = Radius",
    "4 = AzureRadius",
    "5 = DuoRadius",
    "6 = FortiRadius",
    "7 = TekRadius",
    "8 = GAuthTOTP",
    "9 = TOTP",
    "10 = MicrosoftTOTP",
    "11 = EmailOTP"
  ],
  "inheritDefaultCriteriaSettings": false,
  "criteria": {
    "securityPrincipals": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "account": "text",
          "type": [
            "1 = User",
            "2 = Group",
            "3 = ForeignSecurityPrincipal",
            "4 = Computer"
          ],
          "sid": "text"
        }
      ]
    },
    "gateways": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "gatewayIP": "text"
        }
      ]
    },
    "oSs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "allowedOSes": {
        "chrome": false,
        "android": false,
        "webClient": false,
        "iOS": false,
        "linux": false,
        "mac": false,
        "wyse": false,
        "windows": false
      }
    },
    "iPs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "allowedIPs": {
        "iPv4s": [
          {
            "from": "text",
            "to": "text"
          }
        ],
        "iPv6s": [
          {
            "from": "text",
            "to": "text"
          }
        ]
      }
    },
    "hardwareIDs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "hardwareID": "text"
        }
      ]
    },
    "access": [
      "0 = DenyCriteriaWhen",
      "1 = AllowCriteriaWhen"
    ],
    "devices": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "client": "text"
        }
      ]
    }
  },
  "displayName": "text",
  "userEnrollment": [
    "0 = Allow",
    "1 = AllowUntil",
    "2 = DoNotAllow"
  ],
  "showInformationForUnenrolledUsers": [
    "0 = Always",
    "1 = IfEnrollmentIsAllowed",
    "2 = Never"
  ],
  "untilDateTime": "2024-11-07T10:03:12.197Z",
  "externalEmailStorage": [
    "0 = RASDatabase",
    "1 = ADMail",
    "2 = ADCustom"
  ],
  "emailContent": "text",
  "emailSubject": "text",
  "userMessagePrompt": "text",
  "adCustomAttribute": "text",
  "allowEnrollExternalEmail": false
}

Update

Update the Email OTP MFA Site Settings.

PUT/api/MFA/EmailOTP/{id}

Path parameters

id*integer (int32)

The ID for which to modify the MFA settings.

Body

MFA settings.

namenullable string

The new name of the target multi-factor authentication .

descriptionnullable string

A user-defined multi-factor authentication description.

enablednullable boolean

Enable or disable the specified multi-factor authentication in a site.

inheritDefaultCriteriaSettingsnullable boolean

If true default criteria settings will be inherited.

Response

No Content

Request

const response = await fetch('/api/MFA/EmailOTP/{id}', {
    method: 'PUT',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({}),
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

Radius

Create

Create a new Radius MFA.

POST/api/MFA/Radius

Query parameters

radiusTypeRadiusType (enum)

RADIUS Type

3 = Radius,4 = AzureRadius,5 = DuoRadius,6 = FortiRadius,7 = TekRadius

Body

MFA settings

name*nullable string

The name of the target Multi Factor Authentication. This must be the actual Multi Factor Authentication name used in the RAS farm.

siteIdinteger (int32)

Site ID in which to modify the specified Multi Factor Authentication. If the parameter is omitted, the site ID of the Licensing Server will be used.

descriptionnullable string

A user-defined Multi Factor Authentication description.

enabledboolean

Enable or disable the Multi Factor Authentication upon creation. If the parameter is omitted, the Multi Factor Authentication is initialised as Disabled.

radiusServer*nullable string

The server of the second level authentication provider.

radiusPort*nullable integer (int32)

The port number of the second level authentication provider.

passwordEncodingPasswordEncoding (enum)

Password Encoding

0 = PAP,1 = CHAP

retries*nullable integer (int32)

Number of retries.

timeout*nullable integer (int32)

Connection timeout (in seconds).

displayName*nullable string

RADIUS type name.

usernameOnlynullable boolean

Specifies if forwarding of only the Username to RADIUS Server is enabled or not.

forwardFirstPwdToADnullable boolean

Specifies if forwarding of first password to Windows authentication provider is enabled or not.

backupServernullable string

The backup server of the second level authentication provider.

haModeHAMode (enum)

High Availability Mode

0 = Parallel,1 = Serial

secretKey*nullable string

RADIUS setting. The secret key.

userMessagePromptnullable string

User message prompt

Response

Created

Body

idinteger (int32)

ID of the object.

adminCreatenullable string

User who created the object.

adminLastModnullable string

User who last modified the object.

timeCreatestring (date-time)

Time when the object was created.

timeLastModstring (date-time)

Time when the object was last modified.

namenullable string

Name

siteIdinteger (int32)

Site ID

descriptionnullable string

Description

enabledboolean

Whether MFA provider is enabled or not.

typeMFAType (enum)

Provider Type

1 = Deepnet,2 = SafeNet,3 = Radius,4 = AzureRadius,5 = DuoRadius,6 = FortiRadius,7 = TekRadius,8 = GAuthTOTP,9 = TOTP,10 = MicrosoftTOTP,11 = EmailOTP

inheritDefaultCriteriaSettingsboolean

If true default criteria restriction settings will be inherited.

criteriaMFACriteria (object)

MFA Criteria

securityPrincipalsSecurityPrincipalsCriteria (object)

Security Principals Criteria

enabledboolean

Whether the Security Principals Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of SecurityPrincipalCriteriaEntry (object)

User criteria list

accountnullable string

The name of the user/group account the filter is added to.

typeUserType (enum)

User Type

1 = User,2 = Group,3 = ForeignSecurityPrincipal,4 = Computer

sidnullable string

The SID of the user/group account the filter is added to.

gatewaysGatewaysCriteria (object)

Gateways Criteria

enabledboolean

Whether the Gateways Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of GatewayCriteriaEntry (object)

Gateway criteria list

gatewayIPnullable string

The gateway IP.

oSsOSsCriteria (object)

OS Criteria Settings

enabledboolean

Whether the OSs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedOSesAllowedOperatingSystems (object)

Allowed Operating Systems

chromeboolean

Whether Chrome is allowed or not.

androidboolean

Whether Android is allowed or not.

webClientboolean

Whether Web Client is allowed or not.

iOSboolean

Whether iOS is allowed or not.

linuxboolean

Whether Linux is allowed or not.

macboolean

Whether MAC OS is allowed or not.

wyseboolean

Whether Wyse is allowed or not.

windowsboolean

Whether Windows is allowed or not.

iPsIPsCriteria (object)

IPs Criteria

enabledboolean

Whether the IPs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedIPsAllowedIPsCriteria (object)

Allowed IPs Criteria

iPv4snullable array of IPv4CriteriaEntry (object)

IPv4 criteria list

fromnullable string

tonullable string

iPv6snullable array of IPv6CriteriaEntry (object)

IPv6 criteria list

fromnullable string

tonullable string

hardwareIDsHardwareIDsCriteria (object)

Hardware IDs Criteria

enabledboolean

Whether the Hardware IDs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of HardwareIDCriteriaEntry (object)

Hardware IDs criteria list

hardwareIDnullable string

The hardware ID.

accessAccessType (enum)

Access type options

0 = DenyCriteriaWhen,1 = AllowCriteriaWhen

devicesDevicesCriteria (object)

Devices Criteria

enabledboolean

Whether the Devices Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of ClientDeviceCriteriaEntry (object)

Client criteria list

clientnullable string

The name of the client device.

servernullable string

The server of the second level authentication provider.

portinteger (int32)

The port number of the second level authentication provider.

passwordEncodingPasswordEncoding (enum)

Password Encoding

0 = PAP,1 = CHAP

retriesinteger (int32)

Number of retries.

timeoutinteger (int32)

Connection timeout (in seconds).

displayNamenullable string

RADIUS type name.

usernameOnlyboolean

Specifies if forwarding of only the Username to RADIUS Server is enabled or not.

forwardFirstPwdToADboolean

Specifies if forwarding of first password to Windows authentication provider is enabled or not.

backupServernullable string

The backup server of the second level authentication provider.

haModeHAMode (enum)

High Availability Mode

0 = Parallel,1 = Serial

attributeInfoListnullable array of MFARadiusAttr (object)

List of the RADIUS attribute information.

vendorIDinteger (int32)

RADIUS attribute vendor ID

attributeIDinteger (int32)

RADIUS attribute ID

attributeTypeRadiusAttrType (enum)

RADIUS attribute type

0 = Number,1 = String,2 = IP,3 = Time

radiusAttrNamenullable string

RADIUS attribute name

vendornullable string

RADIUS attribute vendor name

valuenullable string

RADIUS attribute Value

automationInfoListnullable array of MFARadiusAutoInfo (object)

List of the RADIUS Automation information.

idinteger (int32)

ID of the object.

priorityinteger (int32)

Priority of the object.

autoSendboolean

Whether the RADIUS Automation autoSend is enabled or not

commandnullable string

RADIUS Automation command

enabledboolean

Whether RADIUS Automation is enabled/disabled

imageImageType (enum)

Image Type

100 = Alert,101 = Message,102 = Email,103 = Call,104 = Chat,105 = Flag

descriptionnullable string

RADIUS Description

actionMessagenullable string

RADIUS Action Message

titlenullable string

RADIUS Automation title

ignoreErrorsnullable array of string

List of Ignored Errors.

itemsstring

userMessagePromptnullable string

User message prompt

Request

const response = await fetch('/api/MFA/Radius', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "displayName": "text",
      "name": "text",
      "radiusServer": "text",
      "secretKey": "text"
    }),
});
const data = await response.json();

Response

{
  "adminCreate": "text",
  "adminLastMod": "text",
  "timeCreate": "2024-11-07T10:03:12.197Z",
  "timeLastMod": "2024-11-07T10:03:12.197Z",
  "name": "text",
  "description": "text",
  "enabled": false,
  "type": [
    "1 = Deepnet",
    "2 = SafeNet",
    "3 = Radius",
    "4 = AzureRadius",
    "5 = DuoRadius",
    "6 = FortiRadius",
    "7 = TekRadius",
    "8 = GAuthTOTP",
    "9 = TOTP",
    "10 = MicrosoftTOTP",
    "11 = EmailOTP"
  ],
  "inheritDefaultCriteriaSettings": false,
  "criteria": {
    "securityPrincipals": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "account": "text",
          "type": [
            "1 = User",
            "2 = Group",
            "3 = ForeignSecurityPrincipal",
            "4 = Computer"
          ],
          "sid": "text"
        }
      ]
    },
    "gateways": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "gatewayIP": "text"
        }
      ]
    },
    "oSs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "allowedOSes": {
        "chrome": false,
        "android": false,
        "webClient": false,
        "iOS": false,
        "linux": false,
        "mac": false,
        "wyse": false,
        "windows": false
      }
    },
    "iPs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "allowedIPs": {
        "iPv4s": [
          {
            "from": "text",
            "to": "text"
          }
        ],
        "iPv6s": [
          {
            "from": "text",
            "to": "text"
          }
        ]
      }
    },
    "hardwareIDs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "hardwareID": "text"
        }
      ]
    },
    "access": [
      "0 = DenyCriteriaWhen",
      "1 = AllowCriteriaWhen"
    ],
    "devices": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "client": "text"
        }
      ]
    }
  },
  "server": "text",
  "passwordEncoding": [
    "0 = PAP",
    "1 = CHAP"
  ],
  "displayName": "text",
  "usernameOnly": false,
  "forwardFirstPwdToAD": false,
  "backupServer": "text",
  "haMode": [
    "0 = Parallel",
    "1 = Serial"
  ],
  "attributeInfoList": [
    {
      "attributeType": [
        "0 = Number",
        "1 = String",
        "2 = IP",
        "3 = Time"
      ],
      "radiusAttrName": "text",
      "vendor": "text",
      "value": "text"
    }
  ],
  "automationInfoList": [
    {
      "autoSend": false,
      "command": "text",
      "enabled": false,
      "image": [
        "100 = Alert",
        "101 = Message",
        "102 = Email",
        "103 = Call",
        "104 = Chat",
        "105 = Flag"
      ],
      "description": "text",
      "actionMessage": "text",
      "title": "text"
    }
  ],
  "ignoreErrors": [
    "text"
  ],
  "userMessagePrompt": "text"
}

Update

Update the Radius MFA Site Settings.

PUT/api/MFA/Radius/{id}

Path parameters

id*integer (int32)

The ID for which to modify the MFA Radius settings.

Body

MFA settings.

namenullable string

The new name of the target multi-factor authentication .

descriptionnullable string

A user-defined multi-factor authentication description.

enablednullable boolean

Enable or disable the specified multi-factor authentication in a site.

inheritDefaultCriteriaSettingsnullable boolean

If true default criteria settings will be inherited.

Response

No Content

Request

const response = await fetch('/api/MFA/Radius/{id}', {
    method: 'PUT',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({}),
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

Hardware IDs

List

Retrieve Criteria Hardware ID List of a session server with the specified ID.

GET/api/MFA/{id}/Criteria/HardwareIDs

Path parameters

id*integer (int32)

The ID of a session server for which to retrieve the Criteria settings.

Response

Success

Body

hardwareIDnullable string

The hardware ID.

Request

const response = await fetch('/api/MFA/{id}/Criteria/HardwareIDs', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

Response

[
  {
    "hardwareID": "text"
  }
]

Add

Add a hardware ID to the Hardware ID List of the Criteria settings.

POST/api/MFA/{id}/Criteria/HardwareIDs

Path parameters

id*integer (int32)

The ID of a session server for which to modify the Criteria settings.

Body

Hardware ID configuration.

hardwareID*nullable string

The hardware ID to add to the Criteria.

Response

Created

Request

const response = await fetch('/api/MFA/{id}/Criteria/HardwareIDs', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "hardwareID": "text"
    }),
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

Remove

Remove a hardware ID from the Hardware ID List of the Criteria settings.

DELETE/api/MFA/{id}/Criteria/HardwareIDs

Path parameters

id*integer (int32)

The ID of a session server for which to modify the Criteria settings.

Body

Hardware ID configuration.

hardwareID*nullable string

The hardware ID to remove from the Criteria.

Response

No Content

Request

const response = await fetch('/api/MFA/{id}/Criteria/HardwareIDs', {
    method: 'DELETE',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "hardwareID": "text"
    }),
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

Delete Auto Info

Delete a Radius Auto Info from a site.

DELETE/api/MFA/{id}/RadiusAutoInfo/{radiusautoid}

Path parameters

id*integer (int32)

The ID of a MFA to remove a RadiusAutoInfo from the site.

radiusautoid*integer (int32)

The ID of a RadiusAutoInfo to remove from the site.

Response

No Content

Request

const response = await fetch('/api/MFA/{id}/RadiusAutoInfo/{radiusautoid}', {
    method: 'DELETE',
    headers: {},
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

List

Retrieve Criteria Hardware ID List of a session server with the specified ID.

GET/api/MFA/{id}/Criteria/HardwareIDs

Path parameters

id*integer (int32)

The ID of a session server for which to retrieve the Criteria settings.

Response

Success

Body

hardwareIDnullable string

The hardware ID.

Request

const response = await fetch('/api/MFA/{id}/Criteria/HardwareIDs', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

Response

[
  {
    "hardwareID": "text"
  }
]

List

Retrieve Criteria Gateway IP List of a session server with the specified ID.

GET/api/MFA/{id}/Criteria/GatewayIPs

Path parameters

id*integer (int32)

The ID of a session server for which to retrieve the Criteria settings.

Response

Success

Body

gatewayIPnullable string

The gateway IP.

Request

const response = await fetch('/api/MFA/{id}/Criteria/GatewayIPs', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

Response

[
  {
    "gatewayIP": "text"
  }
]

List

Retrieve Criteria Device List of a session server with the specified ID.

GET/api/MFA/{id}/Criteria/Devices

Path parameters

id*integer (int32)

The ID of a session server for which to retrieve the Criteria settings.

Response

Success

Body

clientnullable string

The name of the client device.

Request

const response = await fetch('/api/MFA/{id}/Criteria/Devices', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

Response

[
  {
    "client": "text"
  }
]

Remove

Remove a hardware ID from the Hardware ID List of the Criteria settings.

DELETE/api/MFA/{id}/Criteria/HardwareIDs

Path parameters

id*integer (int32)

The ID of a session server for which to modify the Criteria settings.

Body

Hardware ID configuration.

hardwareID*nullable string

The hardware ID to remove from the Criteria.

Response

No Content

Request

const response = await fetch('/api/MFA/{id}/Criteria/HardwareIDs', {
    method: 'DELETE',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "hardwareID": "text"
    }),
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

Remove

Remove a gateway IP from the Gateway IP List of the Criteria settings.

DELETE/api/MFA/{id}/Criteria/GatewayIPs

Path parameters

id*integer (int32)

The ID of a session server for which to modify the Criteria settings.

Body

Gateway IP configuration.

ip*nullable string

The IP of the gateway to remove from the Criteria.

Response

No Content

Request

const response = await fetch('/api/MFA/{id}/Criteria/GatewayIPs', {
    method: 'DELETE',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "ip": "text"
    }),
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

Remove

Remove a device from the Device List of the Criteria settings.

DELETE/api/MFA/{id}/Criteria/Devices

Path parameters

id*integer (int32)

The ID of a session server for which to modify the Criteria settings.

Body

Device configuration.

clientDeviceName*nullable string

The name of the client device to remove from the Criteria.

Response

No Content

Request

const response = await fetch('/api/MFA/{id}/Criteria/Devices', {
    method: 'DELETE',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "clientDeviceName": "text"
    }),
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

Check Connection

Checks Connection of the Multi Factor Authentication.

GET/api/MFA/CheckConnection

Query parameters

Serverstring

The server of the second level authentication provider.

BackupServerstring

The backup server of the second level authentication provider.

Portinteger (int32)

The port number of the second level authentication provider..

HAModeHAMode (enum)

High Availability Mode

0 = Parallel,1 = Serial

Timeoutinteger (int32)

Connection timeout (in seconds).

Retriesinteger (int32)

Number of retries.

Lengthinteger (int32)

PasswordEncodingPasswordEncoding (enum)

Password Encoding

0 = PAP,1 = CHAP

Response

Success

Request

const response = await fetch('/api/MFA/CheckConnection', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

Remove

Remove a user, group or machine from the Security Principal List of the Criteria settings.

DELETE/api/MFA/{id}/Criteria/SecurityPrincipals

Path parameters

id*integer (int32)

The ID of a session server for which to modify the Criteria settings.

Body

SecurityPrincipal configuration.

accountnullable string

The name of the account to remove from the Criteria.

sidnullable string

The SID of the account to remove from the Criteria.

Response

No Content

Request

const response = await fetch('/api/MFA/{id}/Criteria/SecurityPrincipals', {
    method: 'DELETE',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({}),
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

Add

Add a hardware ID to the Hardware ID List of the Criteria settings.

POST/api/MFA/{id}/Criteria/HardwareIDs

Path parameters

id*integer (int32)

The ID of a session server for which to modify the Criteria settings.

Body

Hardware ID configuration.

hardwareID*nullable string

The hardware ID to add to the Criteria.

Response

Created

Request

const response = await fetch('/api/MFA/{id}/Criteria/HardwareIDs', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "hardwareID": "text"
    }),
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

Add

Add a device to the Device List of the Criteria settings.

POST/api/MFA/{id}/Criteria/Devices

Path parameters

id*integer (int32)

The ID of a session server for which to modify the Criteria settings.

Body

Device configuration.

clientDeviceName*nullable string

The name of the client device to add to the Criteria.

Response

Created

Request

const response = await fetch('/api/MFA/{id}/Criteria/Devices', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "clientDeviceName": "text"
    }),
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

Remove

Remove an IP from the IP List of the Criteria settings.

DELETE/api/MFA/{id}/Criteria/IPs

Path parameters

id*integer (int32)

The ID of a session server for which to modify the Criteria settings.

Body

IP configuration.

ip*nullable string

Value that represents the IP

ipType*IPVersion (enum)

IP Version

0 = Version4,1 = Version6,2 = BothVersions

Response

No Content

Request

const response = await fetch('/api/MFA/{id}/Criteria/IPs', {
    method: 'DELETE',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "ip": "text",
      "ipType": [
        "0 = Version4",
        "1 = Version6",
        "2 = BothVersions"
      ]
    }),
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

Update

Update the MFA Deepnet settings.

PUT/api/MFA/Deepnet/{id}

Path parameters

id*integer (int32)

The id for which to modify the MFA settings.

Body

MFA settings.

namenullable string

The new name of the target multi-factor authentication .

descriptionnullable string

A user-defined multi-factor authentication description.

enablednullable boolean

Enable or disable the specified multi-factor authentication in a site.

inheritDefaultCriteriaSettingsnullable boolean

If true default criteria settings will be inherited.

Response

No Content

Request

const response = await fetch('/api/MFA/Deepnet/{id}', {
    method: 'PUT',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({}),
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

Update

Update the Radius MFA Site Settings.

PUT/api/MFA/Radius/{id}

Path parameters

id*integer (int32)

The ID for which to modify the MFA Radius settings.

Body

MFA settings.

namenullable string

The new name of the target multi-factor authentication .

descriptionnullable string

A user-defined multi-factor authentication description.

enablednullable boolean

Enable or disable the specified multi-factor authentication in a site.

inheritDefaultCriteriaSettingsnullable boolean

If true default criteria settings will be inherited.

Response

No Content

Request

const response = await fetch('/api/MFA/Radius/{id}', {
    method: 'PUT',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({}),
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

List

Retrieve Criteria Security Principal List of a session server with the specified ID.

GET/api/MFA/{id}/Criteria/SecurityPrincipals

Path parameters

id*integer (int32)

The ID of a session server for which to retrieve the Criteria settings.

Response

Success

Body

accountnullable string

The name of the user/group account the filter is added to.

typeUserType (enum)

User Type

1 = User,2 = Group,3 = ForeignSecurityPrincipal,4 = Computer

sidnullable string

The SID of the user/group account the filter is added to.

Request

const response = await fetch('/api/MFA/{id}/Criteria/SecurityPrincipals', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

Response

[
  {
    "account": "text",
    "type": [
      "1 = User",
      "2 = Group",
      "3 = ForeignSecurityPrincipal",
      "4 = Computer"
    ],
    "sid": "text"
  }
]

Add

Add a gateway IP to the Gateway IP List of the Criteria settings.

POST/api/MFA/{id}/Criteria/GatewayIPs

Path parameters

id*integer (int32)

The ID of a session server for which to modify the Criteria settings.

Body

Gateway IP configuration.

ipnullable string

The IP of the gateway to add to the Criteria.

gatewayIdnullable integer (int32)

The ID of the gateway to add to the Criteria.

Response

Created

Request

const response = await fetch('/api/MFA/{id}/Criteria/GatewayIPs', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({}),
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

Add

Add a user, group or machine to the Security Principal List of the Criteria settings.

POST/api/MFA/{id}/Criteria/SecurityPrincipals

Path parameters

id*integer (int32)

The ID of a session server for which to modify the Criteria settings.

Body

SecurityPrincipal configuration.

accountnullable string

The name of the account to add to the Criteria.

sidnullable string

The SID of the account to add to the Criteria.

Response

Created

Request

const response = await fetch('/api/MFA/{id}/Criteria/SecurityPrincipals', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({}),
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

Add

Add an IP to the IP List of the Criteria settings.

POST/api/MFA/{id}/Criteria/IPs

Path parameters

id*integer (int32)

The ID of a session server for which to modify the Criteria settings.

Body

IP configuration.

ip*nullable string

Value that represents the IP

ipType*IPVersion (enum)

IP Version

0 = Version4,1 = Version6,2 = BothVersions

Response

Created

Request

const response = await fetch('/api/MFA/{id}/Criteria/IPs', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "ip": "text",
      "ipType": [
        "0 = Version4",
        "1 = Version6",
        "2 = BothVersions"
      ]
    }),
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

List

Retrieve Criteria IP List of a session server with the specified ID.

GET/api/MFA/{id}/Criteria/IPs

Path parameters

id*integer (int32)

The ID of a session server for which to retrieve the Criteria settings.

Response

Success

Body

iPv4snullable array of IPv4CriteriaEntry (object)

IPv4 criteria list

fromnullable string

tonullable string

iPv6snullable array of IPv6CriteriaEntry (object)

IPv6 criteria list

fromnullable string

tonullable string

Request

const response = await fetch('/api/MFA/{id}/Criteria/IPs', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

Response

{
  "iPv4s": [
    {
      "from": "text",
      "to": "text"
    }
  ],
  "iPv6s": [
    {
      "from": "text",
      "to": "text"
    }
  ]
}

Get Auto Info

Retrieve information about MFA Radius Auto Info List.

GET/api/MFA/{id}/RadiusAutoInfo

Path parameters

id*integer (int32)

The ID of a MFA for which to retrieve the MFA Radius Auto Info List.

Response

Success

Body

idinteger (int32)

ID of the object.

priorityinteger (int32)

Priority of the object.

autoSendboolean

Whether the RADIUS Automation autoSend is enabled or not

commandnullable string

RADIUS Automation command

enabledboolean

Whether RADIUS Automation is enabled/disabled

imageImageType (enum)

Image Type

100 = Alert,101 = Message,102 = Email,103 = Call,104 = Chat,105 = Flag

descriptionnullable string

RADIUS Description

actionMessagenullable string

RADIUS Action Message

titlenullable string

RADIUS Automation title

Request

const response = await fetch('/api/MFA/{id}/RadiusAutoInfo', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

Response

{
  "autoSend": false,
  "command": "text",
  "enabled": false,
  "image": [
    "100 = Alert",
    "101 = Message",
    "102 = Email",
    "103 = Call",
    "104 = Chat",
    "105 = Flag"
  ],
  "description": "text",
  "actionMessage": "text",
  "title": "text"
}

Add Auto Info

Add a new Radius Auto Info to a site.

POST/api/MFA/{id}/RadiusAutoInfo

Path parameters

id*integer (int32)

MFA settings

Body

MFA Radius Auto Info

command*nullable string

RADIUS Automation command

enabledboolean

Whether the RADIUS Automation is enabled/disabled

imageImageType (enum)

Image Type

100 = Alert,101 = Message,102 = Email,103 = Call,104 = Chat,105 = Flag

title*nullable string

RADIUS Automation title

actionMessagenullable string

RADIUS Automation action message

descriptionnullable string

RADIUS Automation description

Response

Created

Body

idinteger (int32)

ID of the object.

priorityinteger (int32)

Priority of the object.

autoSendboolean

Whether the RADIUS Automation autoSend is enabled or not

commandnullable string

RADIUS Automation command

enabledboolean

Whether RADIUS Automation is enabled/disabled

imageImageType (enum)

Image Type

100 = Alert,101 = Message,102 = Email,103 = Call,104 = Chat,105 = Flag

descriptionnullable string

RADIUS Description

actionMessagenullable string

RADIUS Action Message

titlenullable string

RADIUS Automation title

Request

const response = await fetch('/api/MFA/{id}/RadiusAutoInfo', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "command": "text",
      "title": "text"
    }),
});
const data = await response.json();

Response

{
  "autoSend": false,
  "command": "text",
  "enabled": false,
  "image": [
    "100 = Alert",
    "101 = Message",
    "102 = Email",
    "103 = Call",
    "104 = Chat",
    "105 = Flag"
  ],
  "description": "text",
  "actionMessage": "text",
  "title": "text"
}

Update Auto Info

Update Radius Auto Info from a site.

PUT/api/MFA/{id}/RadiusAutoInfo/{radiusautoid}

Path parameters

id*integer (int32)

The ID of a MFA to update a RadiusAutoInfo from the site.

radiusautoid*integer (int32)

The ID of a RadiusAutoInfo to update.

Body

Radius Auto Info entry.

autoSendnullable boolean

Whether the RADIUS Automation autoSend is enabled or not

commandnullable string

RADIUS Automation command

enablednullable boolean

Whether the RADIUS Automation is enabled/disabled

imageImageType (enum)

Image Type

100 = Alert,101 = Message,102 = Email,103 = Call,104 = Chat,105 = Flag

descriptionnullable string

RADIUS Automation description

actionMessagenullable string

RADIUS Automation action message

newTitlenullable string

RADIUS Automation title

priorityMoveDirection (enum)

Move Direction.

0 = Up,1 = Down

Response

No Content

Request

const response = await fetch('/api/MFA/{id}/RadiusAutoInfo/{radiusautoid}', {
    method: 'PUT',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({}),
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

Duplicate

Duplicate a Multi Factor Authentication.

POST/api/MFA/{id}/Duplicate

Path parameters

id*integer (int32)

The ID of the Multi Factor Authentication to duplicate

Response

Created

Body

idinteger (int32)

ID of the object.

adminCreatenullable string

User who created the object.

adminLastModnullable string

User who last modified the object.

timeCreatestring (date-time)

Time when the object was created.

timeLastModstring (date-time)

Time when the object was last modified.

namenullable string

Name

siteIdinteger (int32)

Site ID

descriptionnullable string

Description

enabledboolean

Whether MFA provider is enabled or not.

typeMFAType (enum)

Provider Type

1 = Deepnet,2 = SafeNet,3 = Radius,4 = AzureRadius,5 = DuoRadius,6 = FortiRadius,7 = TekRadius,8 = GAuthTOTP,9 = TOTP,10 = MicrosoftTOTP,11 = EmailOTP

inheritDefaultCriteriaSettingsboolean

If true default criteria restriction settings will be inherited.

criteriaMFACriteria (object)

MFA Criteria

securityPrincipalsSecurityPrincipalsCriteria (object)

Security Principals Criteria

enabledboolean

Whether the Security Principals Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of SecurityPrincipalCriteriaEntry (object)

User criteria list

accountnullable string

The name of the user/group account the filter is added to.

typeUserType (enum)

User Type

1 = User,2 = Group,3 = ForeignSecurityPrincipal,4 = Computer

sidnullable string

The SID of the user/group account the filter is added to.

gatewaysGatewaysCriteria (object)

Gateways Criteria

enabledboolean

Whether the Gateways Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of GatewayCriteriaEntry (object)

Gateway criteria list

gatewayIPnullable string

The gateway IP.

oSsOSsCriteria (object)

OS Criteria Settings

enabledboolean

Whether the OSs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedOSesAllowedOperatingSystems (object)

Allowed Operating Systems

chromeboolean

Whether Chrome is allowed or not.

androidboolean

Whether Android is allowed or not.

webClientboolean

Whether Web Client is allowed or not.

iOSboolean

Whether iOS is allowed or not.

linuxboolean

Whether Linux is allowed or not.

macboolean

Whether MAC OS is allowed or not.

wyseboolean

Whether Wyse is allowed or not.

windowsboolean

Whether Windows is allowed or not.

iPsIPsCriteria (object)

IPs Criteria

enabledboolean

Whether the IPs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedIPsAllowedIPsCriteria (object)

Allowed IPs Criteria

iPv4snullable array of IPv4CriteriaEntry (object)

IPv4 criteria list

fromnullable string

tonullable string

iPv6snullable array of IPv6CriteriaEntry (object)

IPv6 criteria list

fromnullable string

tonullable string

hardwareIDsHardwareIDsCriteria (object)

Hardware IDs Criteria

enabledboolean

Whether the Hardware IDs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of HardwareIDCriteriaEntry (object)

Hardware IDs criteria list

hardwareIDnullable string

The hardware ID.

accessAccessType (enum)

Access type options

0 = DenyCriteriaWhen,1 = AllowCriteriaWhen

devicesDevicesCriteria (object)

Devices Criteria

enabledboolean

Whether the Devices Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of ClientDeviceCriteriaEntry (object)

Client criteria list

clientnullable string

The name of the client device.

Request

const response = await fetch('/api/MFA/{id}/Duplicate', {
    method: 'POST',
    headers: {},
});
const data = await response.json();

Response

{
  "adminCreate": "text",
  "adminLastMod": "text",
  "timeCreate": "2024-11-07T10:03:12.197Z",
  "timeLastMod": "2024-11-07T10:03:12.197Z",
  "name": "text",
  "description": "text",
  "enabled": false,
  "type": [
    "1 = Deepnet",
    "2 = SafeNet",
    "3 = Radius",
    "4 = AzureRadius",
    "5 = DuoRadius",
    "6 = FortiRadius",
    "7 = TekRadius",
    "8 = GAuthTOTP",
    "9 = TOTP",
    "10 = MicrosoftTOTP",
    "11 = EmailOTP"
  ],
  "inheritDefaultCriteriaSettings": false,
  "criteria": {
    "securityPrincipals": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "account": "text",
          "type": [
            "1 = User",
            "2 = Group",
            "3 = ForeignSecurityPrincipal",
            "4 = Computer"
          ],
          "sid": "text"
        }
      ]
    },
    "gateways": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "gatewayIP": "text"
        }
      ]
    },
    "oSs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "allowedOSes": {
        "chrome": false,
        "android": false,
        "webClient": false,
        "iOS": false,
        "linux": false,
        "mac": false,
        "wyse": false,
        "windows": false
      }
    },
    "iPs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "allowedIPs": {
        "iPv4s": [
          {
            "from": "text",
            "to": "text"
          }
        ],
        "iPv6s": [
          {
            "from": "text",
            "to": "text"
          }
        ]
      }
    },
    "hardwareIDs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "hardwareID": "text"
        }
      ]
    },
    "access": [
      "0 = DenyCriteriaWhen",
      "1 = AllowCriteriaWhen"
    ],
    "devices": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "client": "text"
        }
      ]
    }
  }
}

Create

Create a new Deepnet MFA.

POST/api/MFA/Deepnet

Body

MFA settings

name*nullable string

The name of the target Multi Factor Authentication. This must be the actual Multi Factor Authentication name used in the RAS farm.

siteIdinteger (int32)

Site ID in which to modify the specified Multi Factor Authentication. If the parameter is omitted, the site ID of the Licensing Server will be used.

descriptionnullable string

A user-defined Multi Factor Authentication description.

enabledboolean

Enable or disable the Multi Factor Authentication upon creation. If the parameter is omitted, the Multi Factor Authentication is initialised as Disabled.

activateEmailnullable boolean

Whether the activation email is enabled or disabled.

activateSMSnullable boolean

Whether the activation SMS is enabled or disabled.

appnullable string

A value that represents the application name.

appIDnullable string

A value that represents the application ID.

authModeDeepnetAuthMode (enum)

Deepnet Authentication Mode

0 = MandatoryForAllUsers,1 = CreateTokenForDomainAuthenticatedUsers,2 = UsersWithDeepnetAcc

deepnetAgent*nullable string

A value that represents the name of Deepnet Agent.

defaultDomainnullable string

A value that represents the Default Domain.

sslnullable boolean

Whether SSL is allowed or not.

deepnetServer*nullable string

The server of the second level authentication provider.

deepnetPort*nullable integer (int32)

The port number of the second level authentication provider.

tokenTypeTokenType (enum)

Token Type

1 = MobileID,3 = QuickID

Response

Created

Body

idinteger (int32)

ID of the object.

adminCreatenullable string

User who created the object.

adminLastModnullable string

User who last modified the object.

timeCreatestring (date-time)

Time when the object was created.

timeLastModstring (date-time)

Time when the object was last modified.

namenullable string

Name

siteIdinteger (int32)

Site ID

descriptionnullable string

Description

enabledboolean

Whether MFA provider is enabled or not.

typeMFAType (enum)

Provider Type

1 = Deepnet,2 = SafeNet,3 = Radius,4 = AzureRadius,5 = DuoRadius,6 = FortiRadius,7 = TekRadius,8 = GAuthTOTP,9 = TOTP,10 = MicrosoftTOTP,11 = EmailOTP

inheritDefaultCriteriaSettingsboolean

If true default criteria restriction settings will be inherited.

criteriaMFACriteria (object)

MFA Criteria

securityPrincipalsSecurityPrincipalsCriteria (object)

Security Principals Criteria

enabledboolean

Whether the Security Principals Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of SecurityPrincipalCriteriaEntry (object)

User criteria list

accountnullable string

The name of the user/group account the filter is added to.

typeUserType (enum)

User Type

1 = User,2 = Group,3 = ForeignSecurityPrincipal,4 = Computer

sidnullable string

The SID of the user/group account the filter is added to.

gatewaysGatewaysCriteria (object)

Gateways Criteria

enabledboolean

Whether the Gateways Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of GatewayCriteriaEntry (object)

Gateway criteria list

gatewayIPnullable string

The gateway IP.

oSsOSsCriteria (object)

OS Criteria Settings

enabledboolean

Whether the OSs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedOSesAllowedOperatingSystems (object)

Allowed Operating Systems

chromeboolean

Whether Chrome is allowed or not.

androidboolean

Whether Android is allowed or not.

webClientboolean

Whether Web Client is allowed or not.

iOSboolean

Whether iOS is allowed or not.

linuxboolean

Whether Linux is allowed or not.

macboolean

Whether MAC OS is allowed or not.

wyseboolean

Whether Wyse is allowed or not.

windowsboolean

Whether Windows is allowed or not.

iPsIPsCriteria (object)

IPs Criteria

enabledboolean

Whether the IPs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedIPsAllowedIPsCriteria (object)

Allowed IPs Criteria

iPv4snullable array of IPv4CriteriaEntry (object)

IPv4 criteria list

fromnullable string

tonullable string

iPv6snullable array of IPv6CriteriaEntry (object)

IPv6 criteria list

fromnullable string

tonullable string

hardwareIDsHardwareIDsCriteria (object)

Hardware IDs Criteria

enabledboolean

Whether the Hardware IDs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of HardwareIDCriteriaEntry (object)

Hardware IDs criteria list

hardwareIDnullable string

The hardware ID.

accessAccessType (enum)

Access type options

0 = DenyCriteriaWhen,1 = AllowCriteriaWhen

devicesDevicesCriteria (object)

Devices Criteria

enabledboolean

Whether the Devices Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of ClientDeviceCriteriaEntry (object)

Client criteria list

clientnullable string

The name of the client device.

activateEmailboolean

Whether the activation email is enabled or disabled.

activateSMSboolean

Whether the activation SMS is enabled or disabled.

appnullable string

A value that represents the application name.

appIDnullable string

A value that represents the application ID.

authModeDeepnetAuthMode (enum)

Deepnet Authentication Mode

0 = MandatoryForAllUsers,1 = CreateTokenForDomainAuthenticatedUsers,2 = UsersWithDeepnetAcc

deepnetAgentnullable string

A value that represents the name of Deepnet Agent.

defaultDomainnullable string

A value that represents the Default Domain.

sslboolean

Whether SSL is allowed or not.

servernullable string

The server of the second level authentication provider.

portinteger (int32)

The port number of the second level authentication provider.

tokenTypeTokenType (enum)

Token Type

1 = MobileID,3 = QuickID

Request

const response = await fetch('/api/MFA/Deepnet', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "deepnetAgent": "text",
      "deepnetServer": "text",
      "name": "text"
    }),
});
const data = await response.json();

Response

{
  "adminCreate": "text",
  "adminLastMod": "text",
  "timeCreate": "2024-11-07T10:03:12.197Z",
  "timeLastMod": "2024-11-07T10:03:12.197Z",
  "name": "text",
  "description": "text",
  "enabled": false,
  "type": [
    "1 = Deepnet",
    "2 = SafeNet",
    "3 = Radius",
    "4 = AzureRadius",
    "5 = DuoRadius",
    "6 = FortiRadius",
    "7 = TekRadius",
    "8 = GAuthTOTP",
    "9 = TOTP",
    "10 = MicrosoftTOTP",
    "11 = EmailOTP"
  ],
  "inheritDefaultCriteriaSettings": false,
  "criteria": {
    "securityPrincipals": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "account": "text",
          "type": [
            "1 = User",
            "2 = Group",
            "3 = ForeignSecurityPrincipal",
            "4 = Computer"
          ],
          "sid": "text"
        }
      ]
    },
    "gateways": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "gatewayIP": "text"
        }
      ]
    },
    "oSs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "allowedOSes": {
        "chrome": false,
        "android": false,
        "webClient": false,
        "iOS": false,
        "linux": false,
        "mac": false,
        "wyse": false,
        "windows": false
      }
    },
    "iPs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "allowedIPs": {
        "iPv4s": [
          {
            "from": "text",
            "to": "text"
          }
        ],
        "iPv6s": [
          {
            "from": "text",
            "to": "text"
          }
        ]
      }
    },
    "hardwareIDs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "hardwareID": "text"
        }
      ]
    },
    "access": [
      "0 = DenyCriteriaWhen",
      "1 = AllowCriteriaWhen"
    ],
    "devices": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "client": "text"
        }
      ]
    }
  },
  "activateEmail": false,
  "activateSMS": false,
  "app": "text",
  "appID": "text",
  "authMode": [
    "0 = MandatoryForAllUsers",
    "1 = CreateTokenForDomainAuthenticatedUsers",
    "2 = UsersWithDeepnetAcc"
  ],
  "deepnetAgent": "text",
  "defaultDomain": "text",
  "ssl": false,
  "server": "text",
  "tokenType": [
    "1 = MobileID",
    "3 = QuickID"
  ]
}

Create

Create a new Radius MFA.

POST/api/MFA/Radius

Query parameters

radiusTypeRadiusType (enum)

RADIUS Type

3 = Radius,4 = AzureRadius,5 = DuoRadius,6 = FortiRadius,7 = TekRadius

Body

MFA settings

name*nullable string

The name of the target Multi Factor Authentication. This must be the actual Multi Factor Authentication name used in the RAS farm.

siteIdinteger (int32)

Site ID in which to modify the specified Multi Factor Authentication. If the parameter is omitted, the site ID of the Licensing Server will be used.

descriptionnullable string

A user-defined Multi Factor Authentication description.

enabledboolean

Enable or disable the Multi Factor Authentication upon creation. If the parameter is omitted, the Multi Factor Authentication is initialised as Disabled.

radiusServer*nullable string

The server of the second level authentication provider.

radiusPort*nullable integer (int32)

The port number of the second level authentication provider.

passwordEncodingPasswordEncoding (enum)

Password Encoding

0 = PAP,1 = CHAP

retries*nullable integer (int32)

Number of retries.

timeout*nullable integer (int32)

Connection timeout (in seconds).

displayName*nullable string

RADIUS type name.

usernameOnlynullable boolean

Specifies if forwarding of only the Username to RADIUS Server is enabled or not.

forwardFirstPwdToADnullable boolean

Specifies if forwarding of first password to Windows authentication provider is enabled or not.

backupServernullable string

The backup server of the second level authentication provider.

haModeHAMode (enum)

High Availability Mode

0 = Parallel,1 = Serial

secretKey*nullable string

RADIUS setting. The secret key.

userMessagePromptnullable string

User message prompt

Response

Created

Body

idinteger (int32)

ID of the object.

adminCreatenullable string

User who created the object.

adminLastModnullable string

User who last modified the object.

timeCreatestring (date-time)

Time when the object was created.

timeLastModstring (date-time)

Time when the object was last modified.

namenullable string

Name

siteIdinteger (int32)

Site ID

descriptionnullable string

Description

enabledboolean

Whether MFA provider is enabled or not.

typeMFAType (enum)

Provider Type

1 = Deepnet,2 = SafeNet,3 = Radius,4 = AzureRadius,5 = DuoRadius,6 = FortiRadius,7 = TekRadius,8 = GAuthTOTP,9 = TOTP,10 = MicrosoftTOTP,11 = EmailOTP

inheritDefaultCriteriaSettingsboolean

If true default criteria restriction settings will be inherited.

criteriaMFACriteria (object)

MFA Criteria

securityPrincipalsSecurityPrincipalsCriteria (object)

Security Principals Criteria

enabledboolean

Whether the Security Principals Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of SecurityPrincipalCriteriaEntry (object)

User criteria list

accountnullable string

The name of the user/group account the filter is added to.

typeUserType (enum)

User Type

1 = User,2 = Group,3 = ForeignSecurityPrincipal,4 = Computer

sidnullable string

The SID of the user/group account the filter is added to.

gatewaysGatewaysCriteria (object)

Gateways Criteria

enabledboolean

Whether the Gateways Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of GatewayCriteriaEntry (object)

Gateway criteria list

gatewayIPnullable string

The gateway IP.

oSsOSsCriteria (object)

OS Criteria Settings

enabledboolean

Whether the OSs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedOSesAllowedOperatingSystems (object)

Allowed Operating Systems

chromeboolean

Whether Chrome is allowed or not.

androidboolean

Whether Android is allowed or not.

webClientboolean

Whether Web Client is allowed or not.

iOSboolean

Whether iOS is allowed or not.

linuxboolean

Whether Linux is allowed or not.

macboolean

Whether MAC OS is allowed or not.

wyseboolean

Whether Wyse is allowed or not.

windowsboolean

Whether Windows is allowed or not.

iPsIPsCriteria (object)

IPs Criteria

enabledboolean

Whether the IPs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedIPsAllowedIPsCriteria (object)

Allowed IPs Criteria

iPv4snullable array of IPv4CriteriaEntry (object)

IPv4 criteria list

fromnullable string

tonullable string

iPv6snullable array of IPv6CriteriaEntry (object)

IPv6 criteria list

fromnullable string

tonullable string

hardwareIDsHardwareIDsCriteria (object)

Hardware IDs Criteria

enabledboolean

Whether the Hardware IDs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of HardwareIDCriteriaEntry (object)

Hardware IDs criteria list

hardwareIDnullable string

The hardware ID.

accessAccessType (enum)

Access type options

0 = DenyCriteriaWhen,1 = AllowCriteriaWhen

devicesDevicesCriteria (object)

Devices Criteria

enabledboolean

Whether the Devices Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of ClientDeviceCriteriaEntry (object)

Client criteria list

clientnullable string

The name of the client device.

servernullable string

The server of the second level authentication provider.

portinteger (int32)

The port number of the second level authentication provider.

passwordEncodingPasswordEncoding (enum)

Password Encoding

0 = PAP,1 = CHAP

retriesinteger (int32)

Number of retries.

timeoutinteger (int32)

Connection timeout (in seconds).

displayNamenullable string

RADIUS type name.

usernameOnlyboolean

Specifies if forwarding of only the Username to RADIUS Server is enabled or not.

forwardFirstPwdToADboolean

Specifies if forwarding of first password to Windows authentication provider is enabled or not.

backupServernullable string

The backup server of the second level authentication provider.

haModeHAMode (enum)

High Availability Mode

0 = Parallel,1 = Serial

attributeInfoListnullable array of MFARadiusAttr (object)

List of the RADIUS attribute information.

vendorIDinteger (int32)

RADIUS attribute vendor ID

attributeIDinteger (int32)

RADIUS attribute ID

attributeTypeRadiusAttrType (enum)

RADIUS attribute type

0 = Number,1 = String,2 = IP,3 = Time

radiusAttrNamenullable string

RADIUS attribute name

vendornullable string

RADIUS attribute vendor name

valuenullable string

RADIUS attribute Value

automationInfoListnullable array of MFARadiusAutoInfo (object)

List of the RADIUS Automation information.

idinteger (int32)

ID of the object.

priorityinteger (int32)

Priority of the object.

autoSendboolean

Whether the RADIUS Automation autoSend is enabled or not

commandnullable string

RADIUS Automation command

enabledboolean

Whether RADIUS Automation is enabled/disabled

imageImageType (enum)

Image Type

100 = Alert,101 = Message,102 = Email,103 = Call,104 = Chat,105 = Flag

descriptionnullable string

RADIUS Description

actionMessagenullable string

RADIUS Action Message

titlenullable string

RADIUS Automation title

ignoreErrorsnullable array of string

List of Ignored Errors.

itemsstring

userMessagePromptnullable string

User message prompt

Request

const response = await fetch('/api/MFA/Radius', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "displayName": "text",
      "name": "text",
      "radiusServer": "text",
      "secretKey": "text"
    }),
});
const data = await response.json();

Response

{
  "adminCreate": "text",
  "adminLastMod": "text",
  "timeCreate": "2024-11-07T10:03:12.197Z",
  "timeLastMod": "2024-11-07T10:03:12.197Z",
  "name": "text",
  "description": "text",
  "enabled": false,
  "type": [
    "1 = Deepnet",
    "2 = SafeNet",
    "3 = Radius",
    "4 = AzureRadius",
    "5 = DuoRadius",
    "6 = FortiRadius",
    "7 = TekRadius",
    "8 = GAuthTOTP",
    "9 = TOTP",
    "10 = MicrosoftTOTP",
    "11 = EmailOTP"
  ],
  "inheritDefaultCriteriaSettings": false,
  "criteria": {
    "securityPrincipals": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "account": "text",
          "type": [
            "1 = User",
            "2 = Group",
            "3 = ForeignSecurityPrincipal",
            "4 = Computer"
          ],
          "sid": "text"
        }
      ]
    },
    "gateways": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "gatewayIP": "text"
        }
      ]
    },
    "oSs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "allowedOSes": {
        "chrome": false,
        "android": false,
        "webClient": false,
        "iOS": false,
        "linux": false,
        "mac": false,
        "wyse": false,
        "windows": false
      }
    },
    "iPs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "allowedIPs": {
        "iPv4s": [
          {
            "from": "text",
            "to": "text"
          }
        ],
        "iPv6s": [
          {
            "from": "text",
            "to": "text"
          }
        ]
      }
    },
    "hardwareIDs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "hardwareID": "text"
        }
      ]
    },
    "access": [
      "0 = DenyCriteriaWhen",
      "1 = AllowCriteriaWhen"
    ],
    "devices": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "client": "text"
        }
      ]
    }
  },
  "server": "text",
  "passwordEncoding": [
    "0 = PAP",
    "1 = CHAP"
  ],
  "displayName": "text",
  "usernameOnly": false,
  "forwardFirstPwdToAD": false,
  "backupServer": "text",
  "haMode": [
    "0 = Parallel",
    "1 = Serial"
  ],
  "attributeInfoList": [
    {
      "attributeType": [
        "0 = Number",
        "1 = String",
        "2 = IP",
        "3 = Time"
      ],
      "radiusAttrName": "text",
      "vendor": "text",
      "value": "text"
    }
  ],
  "automationInfoList": [
    {
      "autoSend": false,
      "command": "text",
      "enabled": false,
      "image": [
        "100 = Alert",
        "101 = Message",
        "102 = Email",
        "103 = Call",
        "104 = Chat",
        "105 = Flag"
      ],
      "description": "text",
      "actionMessage": "text",
      "title": "text"
    }
  ],
  "ignoreErrors": [
    "text"
  ],
  "userMessagePrompt": "text"
}

TOTP

Create

Create a new TOTP MFA.

POST/api/MFA/TOTP

Body

MFA settings

name*nullable string

The name of the target Multi Factor Authentication. This must be the actual Multi Factor Authentication name used in the RAS farm.

siteIdinteger (int32)

Site ID in which to modify the specified Multi Factor Authentication. If the parameter is omitted, the site ID of the Licensing Server will be used.

descriptionnullable string

A user-defined Multi Factor Authentication description.

enabledboolean

Enable or disable the Multi Factor Authentication upon creation. If the parameter is omitted, the Multi Factor Authentication is initialised as Disabled.

displayName*nullable string

RADIUS type name.

userEnrollmentUserEnrollment (enum)

User Enrollment

0 = Allow,1 = AllowUntil,2 = DoNotAllow

showInformationForUnenrolledUsersShowInformationForUnenrolledUsers (enum)

Show information for unenrolled users

0 = Always,1 = IfEnrollmentIsAllowed,2 = Never

untilDateTimenullable string (date-time)

Allow User Enrollment until date/time

tolerancenullable integer (int32)

TOTP tolerance in seconds. Accepted values are 0 (None), 30, 60, 90 and 120

userMessagePromptnullable string

User message prompt

Response

Created

Body

idinteger (int32)

ID of the object.

adminCreatenullable string

User who created the object.

adminLastModnullable string

User who last modified the object.

timeCreatestring (date-time)

Time when the object was created.

timeLastModstring (date-time)

Time when the object was last modified.

namenullable string

Name

siteIdinteger (int32)

Site ID

descriptionnullable string

Description

enabledboolean

Whether MFA provider is enabled or not.

typeMFAType (enum)

Provider Type

1 = Deepnet,2 = SafeNet,3 = Radius,4 = AzureRadius,5 = DuoRadius,6 = FortiRadius,7 = TekRadius,8 = GAuthTOTP,9 = TOTP,10 = MicrosoftTOTP,11 = EmailOTP

inheritDefaultCriteriaSettingsboolean

If true default criteria restriction settings will be inherited.

criteriaMFACriteria (object)

MFA Criteria

securityPrincipalsSecurityPrincipalsCriteria (object)

Security Principals Criteria

enabledboolean

Whether the Security Principals Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of SecurityPrincipalCriteriaEntry (object)

User criteria list

accountnullable string

The name of the user/group account the filter is added to.

typeUserType (enum)

User Type

1 = User,2 = Group,3 = ForeignSecurityPrincipal,4 = Computer

sidnullable string

The SID of the user/group account the filter is added to.

gatewaysGatewaysCriteria (object)

Gateways Criteria

enabledboolean

Whether the Gateways Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of GatewayCriteriaEntry (object)

Gateway criteria list

gatewayIPnullable string

The gateway IP.

oSsOSsCriteria (object)

OS Criteria Settings

enabledboolean

Whether the OSs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedOSesAllowedOperatingSystems (object)

Allowed Operating Systems

chromeboolean

Whether Chrome is allowed or not.

androidboolean

Whether Android is allowed or not.

webClientboolean

Whether Web Client is allowed or not.

iOSboolean

Whether iOS is allowed or not.

linuxboolean

Whether Linux is allowed or not.

macboolean

Whether MAC OS is allowed or not.

wyseboolean

Whether Wyse is allowed or not.

windowsboolean

Whether Windows is allowed or not.

iPsIPsCriteria (object)

IPs Criteria

enabledboolean

Whether the IPs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedIPsAllowedIPsCriteria (object)

Allowed IPs Criteria

iPv4snullable array of IPv4CriteriaEntry (object)

IPv4 criteria list

fromnullable string

tonullable string

iPv6snullable array of IPv6CriteriaEntry (object)

IPv6 criteria list

fromnullable string

tonullable string

hardwareIDsHardwareIDsCriteria (object)

Hardware IDs Criteria

enabledboolean

Whether the Hardware IDs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of HardwareIDCriteriaEntry (object)

Hardware IDs criteria list

hardwareIDnullable string

The hardware ID.

accessAccessType (enum)

Access type options

0 = DenyCriteriaWhen,1 = AllowCriteriaWhen

devicesDevicesCriteria (object)

Devices Criteria

enabledboolean

Whether the Devices Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of ClientDeviceCriteriaEntry (object)

Client criteria list

clientnullable string

The name of the client device.

displayNamenullable string

Authentication method type

userMessagePromptnullable string

User message prompt

userEnrollmentUserEnrollment (enum)

User Enrollment

0 = Allow,1 = AllowUntil,2 = DoNotAllow

showInformationForUnenrolledUsersShowInformationForUnenrolledUsers (enum)

Show information for unenrolled users

0 = Always,1 = IfEnrollmentIsAllowed,2 = Never

untilDateTimestring (date-time)

Allow User Enrollment until date/time

toleranceinteger (int32)

TOTP tolerance in seconds. Accepted values are 0 (None), 30, 60, 90 and 120

Request

Response

Update

Update the TOTP MFA Site Settings.

PUT/api/MFA/TOTP/{id}

Path parameters

id*integer (int32)

The ID for which to modify the MFA settings.

Body

MFA settings.

namenullable string

The new name of the target multi-factor authentication .

descriptionnullable string

A user-defined multi-factor authentication description.

enablednullable boolean

Enable or disable the specified multi-factor authentication in a site.

inheritDefaultCriteriaSettingsnullable boolean

If true default criteria settings will be inherited.

Response

No Content

Request

Response

Safenet

Create

Create a new Safenet MFA.

POST/api/MFA/Safenet

Body

MFA settings

name*nullable string

The name of the target Multi Factor Authentication. This must be the actual Multi Factor Authentication name used in the RAS farm.

siteIdinteger (int32)

Site ID in which to modify the specified Multi Factor Authentication. If the parameter is omitted, the site ID of the Licensing Server will be used.

descriptionnullable string

A user-defined Multi Factor Authentication description.

enabledboolean

Enable or disable the Multi Factor Authentication upon creation. If the parameter is omitted, the Multi Factor Authentication is initialised as Disabled.

safenetAuthModeSafeNetAuthMode (enum)

SafeNet Authentication Mode

0 = MandatoryForAllUsers,1 = CreateTokenForDomainAuthenticatedUsers,2 = UsersWithSafeNetAcc

otpServiceURL*nullable string

OTP Service URL

userRepositorynullable string

A value representing User Store

tmsWebApiURLnullable string

The URL of the web service

Response

Created

Body

idinteger (int32)

ID of the object.

adminCreatenullable string

User who created the object.

adminLastModnullable string

User who last modified the object.

timeCreatestring (date-time)

Time when the object was created.

timeLastModstring (date-time)

Time when the object was last modified.

namenullable string

Name

siteIdinteger (int32)

Site ID

descriptionnullable string

Description

enabledboolean

Whether MFA provider is enabled or not.

typeMFAType (enum)

Provider Type

1 = Deepnet,2 = SafeNet,3 = Radius,4 = AzureRadius,5 = DuoRadius,6 = FortiRadius,7 = TekRadius,8 = GAuthTOTP,9 = TOTP,10 = MicrosoftTOTP,11 = EmailOTP

inheritDefaultCriteriaSettingsboolean

If true default criteria restriction settings will be inherited.

criteriaMFACriteria (object)

MFA Criteria

securityPrincipalsSecurityPrincipalsCriteria (object)

Security Principals Criteria

enabledboolean

Whether the Security Principals Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of SecurityPrincipalCriteriaEntry (object)

User criteria list

accountnullable string

The name of the user/group account the filter is added to.

typeUserType (enum)

User Type

1 = User,2 = Group,3 = ForeignSecurityPrincipal,4 = Computer

sidnullable string

The SID of the user/group account the filter is added to.

gatewaysGatewaysCriteria (object)

Gateways Criteria

enabledboolean

Whether the Gateways Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of GatewayCriteriaEntry (object)

Gateway criteria list

gatewayIPnullable string

The gateway IP.

oSsOSsCriteria (object)

OS Criteria Settings

enabledboolean

Whether the OSs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedOSesAllowedOperatingSystems (object)

Allowed Operating Systems

chromeboolean

Whether Chrome is allowed or not.

androidboolean

Whether Android is allowed or not.

webClientboolean

Whether Web Client is allowed or not.

iOSboolean

Whether iOS is allowed or not.

linuxboolean

Whether Linux is allowed or not.

macboolean

Whether MAC OS is allowed or not.

wyseboolean

Whether Wyse is allowed or not.

windowsboolean

Whether Windows is allowed or not.

iPsIPsCriteria (object)

IPs Criteria

enabledboolean

Whether the IPs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedIPsAllowedIPsCriteria (object)

Allowed IPs Criteria

iPv4snullable array of IPv4CriteriaEntry (object)

IPv4 criteria list

fromnullable string

tonullable string

iPv6snullable array of IPv6CriteriaEntry (object)

IPv6 criteria list

fromnullable string

tonullable string

hardwareIDsHardwareIDsCriteria (object)

Hardware IDs Criteria

enabledboolean

Whether the Hardware IDs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of HardwareIDCriteriaEntry (object)

Hardware IDs criteria list

hardwareIDnullable string

The hardware ID.

accessAccessType (enum)

Access type options

0 = DenyCriteriaWhen,1 = AllowCriteriaWhen

devicesDevicesCriteria (object)

Devices Criteria

enabledboolean

Whether the Devices Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of ClientDeviceCriteriaEntry (object)

Client criteria list

clientnullable string

The name of the client device.

authModeSafeNetAuthMode (enum)

SafeNet Authentication Mode

0 = MandatoryForAllUsers,1 = CreateTokenForDomainAuthenticatedUsers,2 = UsersWithSafeNetAcc

otpServiceURLnullable string

OTP Service URL

userRepositorynullable string

A value representing User Store

tmsWebApiURLnullable string

The URL of the web service

Request

Response

Update

Update the MFA Safenet settings.

PUT/api/MFA/Safenet/{id}

Path parameters

id*integer (int32)

The id for which to modify the MFA settings.

Body

MFA settings.

namenullable string

The new name of the target multi-factor authentication .

descriptionnullable string

A user-defined multi-factor authentication description.

enablednullable boolean

Enable or disable the specified multi-factor authentication in a site.

inheritDefaultCriteriaSettingsnullable boolean

If true default criteria settings will be inherited.

Response

No Content

Request

Response

MFA

List

Retrieve information about one or multiple MFA.

GET/api/MFA

Query parameters

SiteIdinteger (int32)

Site ID from which to retrieve the Multi Factor Authentication information (optional).

Namestring

The name of the multi factor authentication for which to retrieve the information. This must be the actual MFA name used in the RAS farm.

Response

Success

Body

idinteger (int32)

ID of the object.

adminCreatenullable string

User who created the object.

adminLastModnullable string

User who last modified the object.

timeCreatestring (date-time)

Time when the object was created.

timeLastModstring (date-time)

Time when the object was last modified.

namenullable string

Name

siteIdinteger (int32)

Site ID

descriptionnullable string

Description

enabledboolean

Whether MFA provider is enabled or not.

typeMFAType (enum)

Provider Type

1 = Deepnet,2 = SafeNet,3 = Radius,4 = AzureRadius,5 = DuoRadius,6 = FortiRadius,7 = TekRadius,8 = GAuthTOTP,9 = TOTP,10 = MicrosoftTOTP,11 = EmailOTP

inheritDefaultCriteriaSettingsboolean

If true default criteria restriction settings will be inherited.

criteriaMFACriteria (object)

MFA Criteria

securityPrincipalsSecurityPrincipalsCriteria (object)

Security Principals Criteria

enabledboolean

Whether the Security Principals Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of SecurityPrincipalCriteriaEntry (object)

User criteria list

accountnullable string

The name of the user/group account the filter is added to.

typeUserType (enum)

User Type

1 = User,2 = Group,3 = ForeignSecurityPrincipal,4 = Computer

sidnullable string

The SID of the user/group account the filter is added to.

gatewaysGatewaysCriteria (object)

Gateways Criteria

enabledboolean

Whether the Gateways Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of GatewayCriteriaEntry (object)

Gateway criteria list

gatewayIPnullable string

The gateway IP.

oSsOSsCriteria (object)

OS Criteria Settings

enabledboolean

Whether the OSs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedOSesAllowedOperatingSystems (object)

Allowed Operating Systems

chromeboolean

Whether Chrome is allowed or not.

androidboolean

Whether Android is allowed or not.

webClientboolean

Whether Web Client is allowed or not.

iOSboolean

Whether iOS is allowed or not.

linuxboolean

Whether Linux is allowed or not.

macboolean

Whether MAC OS is allowed or not.

wyseboolean

Whether Wyse is allowed or not.

windowsboolean

Whether Windows is allowed or not.

iPsIPsCriteria (object)

IPs Criteria

enabledboolean

Whether the IPs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedIPsAllowedIPsCriteria (object)

Allowed IPs Criteria

iPv4snullable array of IPv4CriteriaEntry (object)

IPv4 criteria list

fromnullable string

tonullable string

iPv6snullable array of IPv6CriteriaEntry (object)

IPv6 criteria list

fromnullable string

tonullable string

hardwareIDsHardwareIDsCriteria (object)

Hardware IDs Criteria

enabledboolean

Whether the Hardware IDs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of HardwareIDCriteriaEntry (object)

Hardware IDs criteria list

hardwareIDnullable string

The hardware ID.

accessAccessType (enum)

Access type options

0 = DenyCriteriaWhen,1 = AllowCriteriaWhen

devicesDevicesCriteria (object)

Devices Criteria

enabledboolean

Whether the Devices Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of ClientDeviceCriteriaEntry (object)

Client criteria list

clientnullable string

The name of the client device.

Request

Response

Get

Retrieve information about one MFA by ID.

GET/api/MFA/{id}

Path parameters

id*integer (int32)

The ID of a MFA for which to retrieve the information.

Response

Success

Body

idinteger (int32)

ID of the object.

adminCreatenullable string

User who created the object.

adminLastModnullable string

User who last modified the object.

timeCreatestring (date-time)

Time when the object was created.

timeLastModstring (date-time)

Time when the object was last modified.

namenullable string

Name

siteIdinteger (int32)

Site ID

descriptionnullable string

Description

enabledboolean

Whether MFA provider is enabled or not.

typeMFAType (enum)

Provider Type

1 = Deepnet,2 = SafeNet,3 = Radius,4 = AzureRadius,5 = DuoRadius,6 = FortiRadius,7 = TekRadius,8 = GAuthTOTP,9 = TOTP,10 = MicrosoftTOTP,11 = EmailOTP

inheritDefaultCriteriaSettingsboolean

If true default criteria restriction settings will be inherited.

criteriaMFACriteria (object)

MFA Criteria

securityPrincipalsSecurityPrincipalsCriteria (object)

Security Principals Criteria

enabledboolean

Whether the Security Principals Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of SecurityPrincipalCriteriaEntry (object)

User criteria list

accountnullable string

The name of the user/group account the filter is added to.

typeUserType (enum)

User Type

1 = User,2 = Group,3 = ForeignSecurityPrincipal,4 = Computer

sidnullable string

The SID of the user/group account the filter is added to.

gatewaysGatewaysCriteria (object)

Gateways Criteria

enabledboolean

Whether the Gateways Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of GatewayCriteriaEntry (object)

Gateway criteria list

gatewayIPnullable string

The gateway IP.

oSsOSsCriteria (object)

OS Criteria Settings

enabledboolean

Whether the OSs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedOSesAllowedOperatingSystems (object)

Allowed Operating Systems

chromeboolean

Whether Chrome is allowed or not.

androidboolean

Whether Android is allowed or not.

webClientboolean

Whether Web Client is allowed or not.

iOSboolean

Whether iOS is allowed or not.

linuxboolean

Whether Linux is allowed or not.

macboolean

Whether MAC OS is allowed or not.

wyseboolean

Whether Wyse is allowed or not.

windowsboolean

Whether Windows is allowed or not.

iPsIPsCriteria (object)

IPs Criteria

enabledboolean

Whether the IPs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedIPsAllowedIPsCriteria (object)

Allowed IPs Criteria

iPv4snullable array of IPv4CriteriaEntry (object)

IPv4 criteria list

fromnullable string

tonullable string

iPv6snullable array of IPv6CriteriaEntry (object)

IPv6 criteria list

fromnullable string

tonullable string

hardwareIDsHardwareIDsCriteria (object)

Hardware IDs Criteria

enabledboolean

Whether the Hardware IDs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of HardwareIDCriteriaEntry (object)

Hardware IDs criteria list

hardwareIDnullable string

The hardware ID.

accessAccessType (enum)

Access type options

0 = DenyCriteriaWhen,1 = AllowCriteriaWhen

devicesDevicesCriteria (object)

Devices Criteria

enabledboolean

Whether the Devices Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of ClientDeviceCriteriaEntry (object)

Client criteria list

clientnullable string

The name of the client device.

Request

Response

Delete

Remove a MFA from a site.

DELETE/api/MFA/{id}

Path parameters

id*integer (int32)

The ID of a MFA to remove from the site.

Response

No Content

Request

Response

Criteria

Get

Retrieve the Criteria settings of an MFA with the specified ID.

GET/api/MFA/{id}/Criteria

Path parameters

id*integer (int32)

The ID of an MFA for which to retrieve the Criteria settings.

Response

Success

Body

securityPrincipalsSecurityPrincipalsCriteria (object)

Security Principals Criteria

enabledboolean

Whether the Security Principals Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of SecurityPrincipalCriteriaEntry (object)

User criteria list

accountnullable string

The name of the user/group account the filter is added to.

typeUserType (enum)

User Type

1 = User,2 = Group,3 = ForeignSecurityPrincipal,4 = Computer

sidnullable string

The SID of the user/group account the filter is added to.

gatewaysGatewaysCriteria (object)

Gateways Criteria

enabledboolean

Whether the Gateways Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of GatewayCriteriaEntry (object)

Gateway criteria list

gatewayIPnullable string

The gateway IP.

oSsOSsCriteria (object)

OS Criteria Settings

enabledboolean

Whether the OSs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedOSesAllowedOperatingSystems (object)

Allowed Operating Systems

chromeboolean

Whether Chrome is allowed or not.

androidboolean

Whether Android is allowed or not.

webClientboolean

Whether Web Client is allowed or not.

iOSboolean

Whether iOS is allowed or not.

linuxboolean

Whether Linux is allowed or not.

macboolean

Whether MAC OS is allowed or not.

wyseboolean

Whether Wyse is allowed or not.

windowsboolean

Whether Windows is allowed or not.

iPsIPsCriteria (object)

IPs Criteria

enabledboolean

Whether the IPs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedIPsAllowedIPsCriteria (object)

Allowed IPs Criteria

iPv4snullable array of IPv4CriteriaEntry (object)

IPv4 criteria list

fromnullable string

tonullable string

iPv6snullable array of IPv6CriteriaEntry (object)

IPv6 criteria list

fromnullable string

tonullable string

hardwareIDsHardwareIDsCriteria (object)

Hardware IDs Criteria

enabledboolean

Whether the Hardware IDs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of HardwareIDCriteriaEntry (object)

Hardware IDs criteria list

hardwareIDnullable string

The hardware ID.

accessAccessType (enum)

Access type options

0 = DenyCriteriaWhen,1 = AllowCriteriaWhen

devicesDevicesCriteria (object)

Devices Criteria

enabledboolean

Whether the Devices Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of ClientDeviceCriteriaEntry (object)

Client criteria list

clientnullable string

The name of the client device.

Request

Response

Update

Update the Criteria settings of an MFA with the specified ID.

PUT/api/MFA/{id}/Criteria

Path parameters

id*integer (int32)

The ID of an MFA for which to modify the Criteria settings.

Body

Criteria settings.

accessAccessType (enum)

Access type options

0 = DenyCriteriaWhen,1 = AllowCriteriaWhen

securityPrincipalsEnablednullable boolean

Whether the Security Principals criteria is enabled or not

securityPrincipalsMatchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

gatewaysEnablednullable boolean

Whether the Gateways criteria is enabled or not

gatewaysMatchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

devicesEnablednullable boolean

Whether the Devices criteria is enabled or not

devicesMatchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

oSsEnablednullable boolean

Whether the OSs criteria is enabled or not

oSsMatchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

iPsEnablednullable boolean

Whether the IPs criteria is enabled or not

iPsMatchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

hardwareIDsEnablednullable boolean

Whether the HardwareIDs criteria is enabled or not

hardwareIDsMatchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

Response

No Content

Request

Response

OSes

Get

Retrieve Criteria OS of a session server with the specified ID.

GET/api/MFA/{id}/Criteria/OSes

Path parameters

id*integer (int32)

The ID of a session server for which to retrieve the Criteria settings.

Response

Success

Body

chromeboolean

Whether Chrome is allowed or not.

androidboolean

Whether Android is allowed or not.

webClientboolean

Whether Web Client is allowed or not.

iOSboolean

Whether iOS is allowed or not.

linuxboolean

Whether Linux is allowed or not.

macboolean

Whether MAC OS is allowed or not.

wyseboolean

Whether Wyse is allowed or not.

windowsboolean

Whether Windows is allowed or not.

Request

Response

Update

Modify the OS of the Criteria settings.

PUT/api/MFA/{id}/Criteria/OSes

Path parameters

id*integer (int32)

The ID of a session server for which to modify the Criteria settings.

Body

OS configuration.

allowClientChromenullable boolean

Allow Chrome OS clients.

allowClientAndroidnullable boolean

Allow Android clients.

allowClientWebnullable boolean

Allow Web clients.

allowClientIOSnullable boolean

Allow IOS clients.

allowClientLinuxnullable boolean

Allow Linux clients.

allowClientMACnullable boolean

Allow Mac clients.

allowClientWindowsnullable boolean

Allow Windows clients.

allowClientWysenullable boolean

Allow Wyse clients.

Response

No Content

Request

Response

Radius Attributes

Get Attribute

Retrieve a Radius Attribute List.

GET/api/MFA/{id}/RadiusAttr

Path parameters

id*integer (int32)

The ID of a MFA for which to retrieve the Radius Attribute.

Response

Success

Body

vendorIDinteger (int32)

RADIUS attribute vendor ID

attributeIDinteger (int32)

RADIUS attribute ID

attributeTypeRadiusAttrType (enum)

RADIUS attribute type

0 = Number,1 = String,2 = IP,3 = Time

radiusAttrNamenullable string

RADIUS attribute name

vendornullable string

RADIUS attribute vendor name

valuenullable string

RADIUS attribute Value

Request

Response

Add Attribute

Add a new Radius Attribute.

POST/api/MFA/{id}/RadiusAttr

Path parameters

id*integer (int32)

MFA settings

Body

MFA Radius Attribute settings

vendorID*integer (int32)

RADIUS attribute vendor ID

attributeID*integer (int32)

RADIUS attribute ID

value*nullable string

RADIUS attribute value The value has many forms:IP, Number, String, and Time. When setting the time it is expected that the time value is in epoch time.

radiusAttrName*nullable string

RADIUS attribute name

vendor*nullable string

RADIUS attribute vendor name

attributeType*RadiusAttrType (enum)

RADIUS attribute type

0 = Number,1 = String,2 = IP,3 = Time

Response

Created

Body

vendorIDinteger (int32)

RADIUS attribute vendor ID

attributeIDinteger (int32)

RADIUS attribute ID

attributeTypeRadiusAttrType (enum)

RADIUS attribute type

0 = Number,1 = String,2 = IP,3 = Time

radiusAttrNamenullable string

RADIUS attribute name

vendornullable string

RADIUS attribute vendor name

valuenullable string

RADIUS attribute Value

Request

Response

Delete Attribute

Delete a Radius Attribute from a site.

DELETE/api/MFA/{id}/RadiusAttr

Path parameters

id*integer (int32)

The ID of a RadiusAttr to remove from the site.

Body

The MFA Radius Attr Proc Model.

vendorID*integer (int32)

RADIUS attribute vendor ID

attributeID*integer (int32)

RADIUS attribute ID

value*nullable string

RADIUS attribute value The value has many forms:IP, Number, String, and Time. When setting the time it is expected that the time value is in epoch time.

radiusAttrName*nullable string

RADIUS attribute name

vendor*nullable string

RADIUS attribute vendor name

attributeType*RadiusAttrType (enum)

RADIUS attribute type

0 = Number,1 = String,2 = IP,3 = Time

Response

No Content

Request

Response

Update

Update the Email OTP MFA Site Settings.

PUT/api/MFA/EmailOTP/{id}

Path parameters

id*integer (int32)

The ID for which to modify the MFA settings.

Body

MFA settings.

namenullable string

The new name of the target multi-factor authentication .

descriptionnullable string

A user-defined multi-factor authentication description.

enablednullable boolean

Enable or disable the specified multi-factor authentication in a site.

inheritDefaultCriteriaSettingsnullable boolean

If true default criteria settings will be inherited.

Response

No Content

Request

const response = await fetch('/api/MFA/EmailOTP/{id}', {
    method: 'PUT',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({}),
});
const data = await response.json();

Response

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

Create

Create a new Email OTP MFA.

POST/api/MFA/EmailOTP

Body

MFA settings

name*nullable string

The name of the target Multi Factor Authentication. This must be the actual Multi Factor Authentication name used in the RAS farm.

siteIdinteger (int32)

Site ID in which to modify the specified Multi Factor Authentication. If the parameter is omitted, the site ID of the Licensing Server will be used.

descriptionnullable string

A user-defined Multi Factor Authentication description.

enabledboolean

Enable or disable the Multi Factor Authentication upon creation. If the parameter is omitted, the Multi Factor Authentication is initialised as Disabled.

displayName*nullable string

RADIUS type name.

userEnrollmentUserEnrollment (enum)

User Enrollment

0 = Allow,1 = AllowUntil,2 = DoNotAllow

showInformationForUnenrolledUsersShowInformationForUnenrolledUsers (enum)

Show information for unenrolled users

0 = Always,1 = IfEnrollmentIsAllowed,2 = Never

untilDateTimenullable string (date-time)

Allow User Enrollment until date/time

otpLifespanSecnullable integer (int32)

The lifespan of the OTP (seconds)

externalEmailStorageExternalEmailStorage (enum)

External email storage

0 = RASDatabase,1 = ADMail,2 = ADCustom

emailContentnullable string

The content of the email. Possible variables: %OTP%, %DURATION%

emailSubjectnullable string

The subject of the email. Possible variables: %OTP%

userMessagePromptnullable string

User message prompt

adCustomAttributenullable string

AD Custom Attribute

allowEnrollExternalEmailnullable boolean

Allow enrollment of external email

otpLengthnullable integer (int32)

The length of the OTP generated

Response

Created

Body

idinteger (int32)

ID of the object.

adminCreatenullable string

User who created the object.

adminLastModnullable string

User who last modified the object.

timeCreatestring (date-time)

Time when the object was created.

timeLastModstring (date-time)

Time when the object was last modified.

namenullable string

Name

siteIdinteger (int32)

Site ID

descriptionnullable string

Description

enabledboolean

Whether MFA provider is enabled or not.

typeMFAType (enum)

Provider Type

1 = Deepnet,2 = SafeNet,3 = Radius,4 = AzureRadius,5 = DuoRadius,6 = FortiRadius,7 = TekRadius,8 = GAuthTOTP,9 = TOTP,10 = MicrosoftTOTP,11 = EmailOTP

inheritDefaultCriteriaSettingsboolean

If true default criteria restriction settings will be inherited.

criteriaMFACriteria (object)

MFA Criteria

securityPrincipalsSecurityPrincipalsCriteria (object)

Security Principals Criteria

enabledboolean

Whether the Security Principals Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of SecurityPrincipalCriteriaEntry (object)

User criteria list

accountnullable string

The name of the user/group account the filter is added to.

typeUserType (enum)

User Type

1 = User,2 = Group,3 = ForeignSecurityPrincipal,4 = Computer

sidnullable string

The SID of the user/group account the filter is added to.

gatewaysGatewaysCriteria (object)

Gateways Criteria

enabledboolean

Whether the Gateways Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of GatewayCriteriaEntry (object)

Gateway criteria list

gatewayIPnullable string

The gateway IP.

oSsOSsCriteria (object)

OS Criteria Settings

enabledboolean

Whether the OSs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedOSesAllowedOperatingSystems (object)

Allowed Operating Systems

chromeboolean

Whether Chrome is allowed or not.

androidboolean

Whether Android is allowed or not.

webClientboolean

Whether Web Client is allowed or not.

iOSboolean

Whether iOS is allowed or not.

linuxboolean

Whether Linux is allowed or not.

macboolean

Whether MAC OS is allowed or not.

wyseboolean

Whether Wyse is allowed or not.

windowsboolean

Whether Windows is allowed or not.

iPsIPsCriteria (object)

IPs Criteria

enabledboolean

Whether the IPs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedIPsAllowedIPsCriteria (object)

Allowed IPs Criteria

iPv4snullable array of IPv4CriteriaEntry (object)

IPv4 criteria list

fromnullable string

tonullable string

iPv6snullable array of IPv6CriteriaEntry (object)

IPv6 criteria list

fromnullable string

tonullable string

hardwareIDsHardwareIDsCriteria (object)

Hardware IDs Criteria

enabledboolean

Whether the Hardware IDs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of HardwareIDCriteriaEntry (object)

Hardware IDs criteria list

hardwareIDnullable string

The hardware ID.

accessAccessType (enum)

Access type options

0 = DenyCriteriaWhen,1 = AllowCriteriaWhen

devicesDevicesCriteria (object)

Devices Criteria

enabledboolean

Whether the Devices Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of ClientDeviceCriteriaEntry (object)

Client criteria list

clientnullable string

The name of the client device.

displayNamenullable string

Display name

userEnrollmentUserEnrollment (enum)

User Enrollment

0 = Allow,1 = AllowUntil,2 = DoNotAllow

showInformationForUnenrolledUsersShowInformationForUnenrolledUsers (enum)

Show information for unenrolled users

0 = Always,1 = IfEnrollmentIsAllowed,2 = Never

untilDateTimestring (date-time)

Allow User Enrollment until date/time

otpLifespanSecinteger (int32)

The lifespan of the OTP (seconds)

externalEmailStorageExternalEmailStorage (enum)

External email storage

0 = RASDatabase,1 = ADMail,2 = ADCustom

emailContentnullable string

The content of the email. Possible variables: %OTP%, %DURATION%

emailSubjectnullable string

The subject of the email. Possible variables: %OTP%

userMessagePromptnullable string

User message prompt

adCustomAttributenullable string

AD Custom Attribute

allowEnrollExternalEmailboolean

Allow enrollment of external email

otpLengthinteger (int32)

The length of the OTP generated

Request

const response = await fetch('/api/MFA/EmailOTP', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "displayName": "text",
      "name": "text"
    }),
});
const data = await response.json();

Response

{
  "adminCreate": "text",
  "adminLastMod": "text",
  "timeCreate": "2024-11-07T10:03:12.197Z",
  "timeLastMod": "2024-11-07T10:03:12.197Z",
  "name": "text",
  "description": "text",
  "enabled": false,
  "type": [
    "1 = Deepnet",
    "2 = SafeNet",
    "3 = Radius",
    "4 = AzureRadius",
    "5 = DuoRadius",
    "6 = FortiRadius",
    "7 = TekRadius",
    "8 = GAuthTOTP",
    "9 = TOTP",
    "10 = MicrosoftTOTP",
    "11 = EmailOTP"
  ],
  "inheritDefaultCriteriaSettings": false,
  "criteria": {
    "securityPrincipals": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "account": "text",
          "type": [
            "1 = User",
            "2 = Group",
            "3 = ForeignSecurityPrincipal",
            "4 = Computer"
          ],
          "sid": "text"
        }
      ]
    },
    "gateways": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "gatewayIP": "text"
        }
      ]
    },
    "oSs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "allowedOSes": {
        "chrome": false,
        "android": false,
        "webClient": false,
        "iOS": false,
        "linux": false,
        "mac": false,
        "wyse": false,
        "windows": false
      }
    },
    "iPs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "allowedIPs": {
        "iPv4s": [
          {
            "from": "text",
            "to": "text"
          }
        ],
        "iPv6s": [
          {
            "from": "text",
            "to": "text"
          }
        ]
      }
    },
    "hardwareIDs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "hardwareID": "text"
        }
      ]
    },
    "access": [
      "0 = DenyCriteriaWhen",
      "1 = AllowCriteriaWhen"
    ],
    "devices": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "client": "text"
        }
      ]
    }
  },
  "displayName": "text",
  "userEnrollment": [
    "0 = Allow",
    "1 = AllowUntil",
    "2 = DoNotAllow"
  ],
  "showInformationForUnenrolledUsers": [
    "0 = Always",
    "1 = IfEnrollmentIsAllowed",
    "2 = Never"
  ],
  "untilDateTime": "2024-11-07T10:03:12.197Z",
  "externalEmailStorage": [
    "0 = RASDatabase",
    "1 = ADMail",
    "2 = ADCustom"
  ],
  "emailContent": "text",
  "emailSubject": "text",
  "userMessagePrompt": "text",
  "adCustomAttribute": "text",
  "allowEnrollExternalEmail": false
}

enabledboolean

Whether the Security Principals Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of SecurityPrincipalCriteriaEntry (object)

User criteria list

accountnullable string

The name of the user/group account the filter is added to.

typeUserType (enum)

User Type

1 = User,2 = Group,3 = ForeignSecurityPrincipal,4 = Computer

sidnullable string

The SID of the user/group account the filter is added to.

gatewaysGatewaysCriteria (object)

Gateways Criteria

enabledboolean

Whether the Gateways Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of GatewayCriteriaEntry (object)

Gateway criteria list

gatewayIPnullable string

The gateway IP.

oSsOSsCriteria (object)

OS Criteria Settings

enabledboolean

Whether the OSs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedOSesAllowedOperatingSystems (object)

Allowed Operating Systems

chromeboolean

Whether Chrome is allowed or not.

androidboolean

Whether Android is allowed or not.

webClientboolean

Whether Web Client is allowed or not.

iOSboolean

Whether iOS is allowed or not.

linuxboolean

Whether Linux is allowed or not.

macboolean

Whether MAC OS is allowed or not.

wyseboolean

Whether Wyse is allowed or not.

windowsboolean

Whether Windows is allowed or not.

iPsIPsCriteria (object)

IPs Criteria

enabledboolean

Whether the IPs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedIPsAllowedIPsCriteria (object)

Allowed IPs Criteria

iPv4snullable array of IPv4CriteriaEntry (object)

IPv4 criteria list

fromnullable string

tonullable string

iPv6snullable array of IPv6CriteriaEntry (object)

IPv6 criteria list

fromnullable string

tonullable string

hardwareIDsHardwareIDsCriteria (object)

Hardware IDs Criteria

enabledboolean

Whether the Hardware IDs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of HardwareIDCriteriaEntry (object)

Hardware IDs criteria list

hardwareIDnullable string

The hardware ID.

accessAccessType (enum)

Access type options

0 = DenyCriteriaWhen,1 = AllowCriteriaWhen

devicesDevicesCriteria (object)

Devices Criteria

enabledboolean

Whether the Devices Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of ClientDeviceCriteriaEntry (object)

Client criteria list

clientnullable string

The name of the client device.

siteIdinteger (int32)

Site ID

Request

Response

Validate AD Access

Validate AD Access of the Multi Factor Authentication.

GET/api/MFA/ValidateADAccess

Query parameters

siteIDinteger (int32)

The Site Id to validate the AD Access.

ADCustomAttributestring

AD Custom Attribute

UserPrincipalNamestring

The User Principal Name

Response

Success

Request

Response

Criteria

Get

Retrieve the Criteria settings of a MFA Default object.

GET/api/MFADefaultSettings/Criteria

Query parameters

siteIdinteger (int32)

The SiteId of a MFA Default object for which to retrieve the Criteria settings (optional).

Response

Success

Body

securityPrincipalsSecurityPrincipalsCriteria (object)

Security Principals Criteria

enabledboolean

Whether the Security Principals Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of SecurityPrincipalCriteriaEntry (object)

User criteria list

accountnullable string

The name of the user/group account the filter is added to.

typeUserType (enum)

User Type

1 = User,2 = Group,3 = ForeignSecurityPrincipal,4 = Computer

sidnullable string

The SID of the user/group account the filter is added to.

gatewaysGatewaysCriteria (object)

Gateways Criteria

enabledboolean

Whether the Gateways Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of GatewayCriteriaEntry (object)

Gateway criteria list

gatewayIPnullable string

The gateway IP.

oSsOSsCriteria (object)

OS Criteria Settings

enabledboolean

Whether the OSs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedOSesAllowedOperatingSystems (object)

Allowed Operating Systems

chromeboolean

Whether Chrome is allowed or not.

androidboolean

Whether Android is allowed or not.

webClientboolean

Whether Web Client is allowed or not.

iOSboolean

Whether iOS is allowed or not.

linuxboolean

Whether Linux is allowed or not.

macboolean

Whether MAC OS is allowed or not.

wyseboolean

Whether Wyse is allowed or not.

windowsboolean

Whether Windows is allowed or not.

iPsIPsCriteria (object)

IPs Criteria

enabledboolean

Whether the IPs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedIPsAllowedIPsCriteria (object)

Allowed IPs Criteria

iPv4snullable array of IPv4CriteriaEntry (object)

IPv4 criteria list

fromnullable string

tonullable string

iPv6snullable array of IPv6CriteriaEntry (object)

IPv6 criteria list

fromnullable string

tonullable string

hardwareIDsHardwareIDsCriteria (object)

Hardware IDs Criteria

enabledboolean

Whether the Hardware IDs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of HardwareIDCriteriaEntry (object)

Hardware IDs criteria list

hardwareIDnullable string

The hardware ID.

accessAccessType (enum)

Access type options

0 = DenyCriteriaWhen,1 = AllowCriteriaWhen

devicesDevicesCriteria (object)

Devices Criteria

enabledboolean

Whether the Devices Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of ClientDeviceCriteriaEntry (object)

Client criteria list

clientnullable string

The name of the client device.

Request

Response

Update

Update the Criteria settings of a MFA Default object.

PUT/api/MFADefaultSettings/Criteria

Query parameters

siteIdinteger (int32)

The SiteId of a MFA Default object for which to modify the Criteria settings (optional).

Body

MFA Criteria settings (optional).

accessAccessType (enum)

Access type options

0 = DenyCriteriaWhen,1 = AllowCriteriaWhen

securityPrincipalsEnablednullable boolean

Whether the Security Principals criteria is enabled or not

securityPrincipalsMatchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

gatewaysEnablednullable boolean

Whether the Gateways criteria is enabled or not

gatewaysMatchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

devicesEnablednullable boolean

Whether the Devices criteria is enabled or not

devicesMatchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

oSsEnablednullable boolean

Whether the OSs criteria is enabled or not

oSsMatchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

iPsEnablednullable boolean

Whether the IPs criteria is enabled or not

iPsMatchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

hardwareIDsEnablednullable boolean

Whether the HardwareIDs criteria is enabled or not

hardwareIDsMatchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

Response

No Content

Request

Response

Gateway IPs

List

Retrieve Criteria Gateway IP List of a Site Defaults object.

GET/api/MFADefaultSettings/Criteria/GatewayIPs

Query parameters

siteIdinteger (int32)

The SiteId of a Site Defaults object for which to retrieve the Criteria settings (optional).

Response

Success

Body

gatewayIPnullable string

The gateway IP.

Request

Response

Add

Add a gateway IP to the Gateway IP List of the Criteria settings.

POST/api/MFADefaultSettings/Criteria/GatewayIPs

Query parameters

siteIdinteger (int32)

The Site ID of an object for which to modify the Criteria settings (optional).

Body

Gateway IP configuration.

ipnullable string

The IP of the gateway to add to the Criteria.

gatewayIdnullable integer (int32)

The ID of the gateway to add to the Criteria.

Response

Created

Request

Response

Remove

Remove a gateway IP from the Gateway IP List of the Criteria settings.

DELETE/api/MFADefaultSettings/Criteria/GatewayIPs

Query parameters

siteIdinteger (int32)

The Site ID of an object for which to modify the Criteria settings (optional).

Body

Gateway IP configuration.

ip*nullable string

The IP of the gateway to remove from the Criteria.

Response

No Content

Request

Response

Devices

Modify the OS of the Criteria settings.

PUT/api/MFADefaultSettings/Criteria/OSes

Query parameters

siteIdinteger (int32)

The Site ID of an object for which to modify the Criteria settings (optional).

Body

OS configuration.

allowClientChromenullable boolean

Allow Chrome OS clients.

allowClientAndroidnullable boolean

Allow Android clients.

allowClientWebnullable boolean

Allow Web clients.

allowClientIOSnullable boolean

Allow IOS clients.

allowClientLinuxnullable boolean

Allow Linux clients.

allowClientMACnullable boolean

Allow Mac clients.

allowClientWindowsnullable boolean

Allow Windows clients.

allowClientWysenullable boolean

Allow Wyse clients.

Response

No Content

Request

Response

IPs

List

Retrieve Criteria IP List of a Site Defaults object.

GET/api/MFADefaultSettings/Criteria/IPs

Query parameters

siteIdinteger (int32)

The SiteId of a Site Defaults object for which to retrieve the Criteria settings (optional).

Response

Success

Body

iPv4snullable array of IPv4CriteriaEntry (object)

IPv4 criteria list

fromnullable string

tonullable string

iPv6snullable array of IPv6CriteriaEntry (object)

IPv6 criteria list

fromnullable string

tonullable string

Request

Response

Add

Add an IP to the IP List of the Criteria settings.

POST/api/MFADefaultSettings/Criteria/IPs

Query parameters

siteIdinteger (int32)

The Site ID of an object for which to modify the Criteria settings (optional).

Body

IP configuration.

ip*nullable string

Value that represents the IP

ipType*IPVersion (enum)

IP Version

0 = Version4,1 = Version6,2 = BothVersions

Response

Created

Request

Response

Remove

Remove an IP from the IP List of the Criteria settings.

DELETE/api/MFADefaultSettings/Criteria/IPs

Query parameters

siteIdinteger (int32)

The Site ID of an object for which to modify the Criteria settings (optional).

Body

IP configuration.

ip*nullable string

Value that represents the IP

ipType*IPVersion (enum)

IP Version

0 = Version4,1 = Version6,2 = BothVersions

Response

No Content

Request

Response

Details

Import Vendor details from file

Read and return MFA Vendor details from an ini file.

POST/api/MFAVendor/Details

Body

VendorFilestring (binary)

Vendor Details file to be uploaded.

VendorFilePathstring

Response

Success

Body

idinteger (int32)

Vendor Id.

namenullable string

Vendor Name.

vendorAttributesnullable array of MFAVendorAttributes (object)

Vendor Attributes.

idinteger (int32)

Vendor Attribute Id.

namenullable string

Vendor Attribute Name.

typeRadiusAttrType (enum)

RADIUS attribute type

0 = Number,1 = String,2 = IP,3 = Time

Request

Response

Security Principals

List

Retrieve Criteria Security Principal List of a Site Defaults object.

GET/api/MFADefaultSettings/Criteria/SecurityPrincipals

Query parameters

siteIdinteger (int32)

The SiteId of a Site Defaults object for which to retrieve the Criteria settings (optional).

Response

Success

Body

accountnullable string

The name of the user/group account the filter is added to.

typeUserType (enum)

User Type

1 = User,2 = Group,3 = ForeignSecurityPrincipal,4 = Computer

sidnullable string

The SID of the user/group account the filter is added to.

Request

Response

Add

Add a user, group or machine to the Security Principal List of the Criteria settings.

POST/api/MFADefaultSettings/Criteria/SecurityPrincipals

Query parameters

siteIdinteger (int32)

The Site ID of an object for which to modify the Criteria settings (optional).

Body

SecurityPrincipal configuration.

accountnullable string

The name of the account to add to the Criteria.

sidnullable string

The SID of the account to add to the Criteria.

Response

Created

Request

Response

Remove

Remove a user, group or machine from the Security Principal List of the Criteria settings.

DELETE/api/MFADefaultSettings/Criteria/SecurityPrincipals

Query parameters

siteIdinteger (int32)

The Site ID of an object for which to modify the Criteria settings (optional).

Body

SecurityPrincipal configuration.

accountnullable string

The name of the account to remove from the Criteria.

sidnullable string

The SID of the account to remove from the Criteria.

Response

No Content

Request

Response

Update

Update the TOTP MFA Site Settings.

PUT/api/MFA/TOTP/{id}

Path parameters

id*integer (int32)

The ID for which to modify the MFA settings.

Body

MFA settings.

namenullable string

The new name of the target multi-factor authentication .

descriptionnullable string

A user-defined multi-factor authentication description.

enablednullable boolean

Enable or disable the specified multi-factor authentication in a site.

inheritDefaultCriteriaSettingsnullable boolean

If true default criteria settings will be inherited.

Response

No Content

Request

Response

Create

Create a new TOTP MFA.

POST/api/MFA/TOTP

Body

MFA settings

name*nullable string

The name of the target Multi Factor Authentication. This must be the actual Multi Factor Authentication name used in the RAS farm.

siteIdinteger (int32)

Site ID in which to modify the specified Multi Factor Authentication. If the parameter is omitted, the site ID of the Licensing Server will be used.

descriptionnullable string

A user-defined Multi Factor Authentication description.

enabledboolean

Enable or disable the Multi Factor Authentication upon creation. If the parameter is omitted, the Multi Factor Authentication is initialised as Disabled.

displayName*nullable string

RADIUS type name.

userEnrollmentUserEnrollment (enum)

User Enrollment

0 = Allow,1 = AllowUntil,2 = DoNotAllow

showInformationForUnenrolledUsersShowInformationForUnenrolledUsers (enum)

Show information for unenrolled users

0 = Always,1 = IfEnrollmentIsAllowed,2 = Never

untilDateTimenullable string (date-time)

Allow User Enrollment until date/time

tolerancenullable integer (int32)

TOTP tolerance in seconds. Accepted values are 0 (None), 30, 60, 90 and 120

userMessagePromptnullable string

User message prompt

Response

Created

Body

idinteger (int32)

ID of the object.

adminCreatenullable string

User who created the object.

adminLastModnullable string

User who last modified the object.

timeCreatestring (date-time)

Time when the object was created.

timeLastModstring (date-time)

Time when the object was last modified.

namenullable string

Name

siteIdinteger (int32)

Site ID

descriptionnullable string

Description

enabledboolean

Whether MFA provider is enabled or not.

typeMFAType (enum)

Provider Type

1 = Deepnet,2 = SafeNet,3 = Radius,4 = AzureRadius,5 = DuoRadius,6 = FortiRadius,7 = TekRadius,8 = GAuthTOTP,9 = TOTP,10 = MicrosoftTOTP,11 = EmailOTP

inheritDefaultCriteriaSettingsboolean

If true default criteria restriction settings will be inherited.

criteriaMFACriteria (object)

MFA Criteria

securityPrincipalsSecurityPrincipalsCriteria (object)

Security Principals Criteria

enabledboolean

Whether the Security Principals Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of SecurityPrincipalCriteriaEntry (object)

User criteria list

accountnullable string

The name of the user/group account the filter is added to.

typeUserType (enum)

User Type

1 = User,2 = Group,3 = ForeignSecurityPrincipal,4 = Computer

sidnullable string

The SID of the user/group account the filter is added to.

gatewaysGatewaysCriteria (object)

Gateways Criteria

enabledboolean

Whether the Gateways Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of GatewayCriteriaEntry (object)

Gateway criteria list

gatewayIPnullable string

The gateway IP.

oSsOSsCriteria (object)

OS Criteria Settings

enabledboolean

Whether the OSs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedOSesAllowedOperatingSystems (object)

Allowed Operating Systems

chromeboolean

Whether Chrome is allowed or not.

androidboolean

Whether Android is allowed or not.

webClientboolean

Whether Web Client is allowed or not.

iOSboolean

Whether iOS is allowed or not.

linuxboolean

Whether Linux is allowed or not.

macboolean

Whether MAC OS is allowed or not.

wyseboolean

Whether Wyse is allowed or not.

windowsboolean

Whether Windows is allowed or not.

iPsIPsCriteria (object)

IPs Criteria

enabledboolean

Whether the IPs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedIPsAllowedIPsCriteria (object)

Allowed IPs Criteria

iPv4snullable array of IPv4CriteriaEntry (object)

IPv4 criteria list

fromnullable string

tonullable string

iPv6snullable array of IPv6CriteriaEntry (object)

IPv6 criteria list

fromnullable string

tonullable string

hardwareIDsHardwareIDsCriteria (object)

Hardware IDs Criteria

enabledboolean

Whether the Hardware IDs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of HardwareIDCriteriaEntry (object)

Hardware IDs criteria list

hardwareIDnullable string

The hardware ID.

accessAccessType (enum)

Access type options

0 = DenyCriteriaWhen,1 = AllowCriteriaWhen

devicesDevicesCriteria (object)

Devices Criteria

enabledboolean

Whether the Devices Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of ClientDeviceCriteriaEntry (object)

Client criteria list

clientnullable string

The name of the client device.

displayNamenullable string

Authentication method type

userMessagePromptnullable string

User message prompt

userEnrollmentUserEnrollment (enum)

User Enrollment

0 = Allow,1 = AllowUntil,2 = DoNotAllow

showInformationForUnenrolledUsersShowInformationForUnenrolledUsers (enum)

Show information for unenrolled users

0 = Always,1 = IfEnrollmentIsAllowed,2 = Never

untilDateTimestring (date-time)

Allow User Enrollment until date/time

toleranceinteger (int32)

TOTP tolerance in seconds. Accepted values are 0 (None), 30, 60, 90 and 120

Request

Response

Validate AD Access

Validate AD Access of the Multi Factor Authentication.

GET/api/MFA/ValidateADAccess

Query parameters

siteIDinteger (int32)

The Site Id to validate the AD Access.

ADCustomAttributestring

AD Custom Attribute

UserPrincipalNamestring

The User Principal Name

Response

Success

Remove a hardware ID from the Hardware ID List of the Criteria settings.

DELETE/api/MFADefaultSettings/Criteria/HardwareIDs

Query parameters

siteIdinteger (int32)

The Site ID of an object for which to modify the Criteria settings (optional).

Body

Hardware ID configuration.

hardwareID*nullable string

The hardware ID to remove from the Criteria.

Response

No Content

Request

Response

Remove

Remove a gateway IP from the Gateway IP List of the Criteria settings.

DELETE/api/MFADefaultSettings/Criteria/GatewayIPs

Query parameters

siteIdinteger (int32)

The Site ID of an object for which to modify the Criteria settings (optional).

Body

Gateway IP configuration.

ip*nullable string

The IP of the gateway to remove from the Criteria.

Response

No Content

Request

Response

Remove

Remove a device from the Device List of the Criteria settings.

DELETE/api/MFADefaultSettings/Criteria/Devices

Query parameters

siteIdinteger (int32)

The Site ID of an object for which to modify the Criteria settings (optional).

Body

Device configuration.

clientDeviceName*nullable string

The name of the client device to remove from the Criteria.

Response

No Content

Request

Response

Remove

Remove a user, group or machine from the Security Principal List of the Criteria settings.

DELETE/api/MFADefaultSettings/Criteria/SecurityPrincipals

Query parameters

siteIdinteger (int32)

The Site ID of an object for which to modify the Criteria settings (optional).

Body

SecurityPrincipal configuration.

accountnullable string

The name of the account to remove from the Criteria.

sidnullable string

The SID of the account to remove from the Criteria.

Response

No Content

Request

Response

Add

Add a hardware ID to the Hardware ID List of the Criteria settings.

POST/api/MFADefaultSettings/Criteria/HardwareIDs

Query parameters

siteIdinteger (int32)

The Site ID of an object for which to modify the Criteria settings (optional).

Body

Hardware ID configuration.

hardwareID*nullable string

The hardware ID to add to the Criteria.

Response

Created

Request

Response

Add

Add a device to the Device List of the Criteria settings.

POST/api/MFADefaultSettings/Criteria/Devices

Query parameters

siteIdinteger (int32)

The Site ID of an object for which to modify the Criteria settings (optional).

Body

Device configuration.

clientDeviceName*nullable string

The name of the client device to add to the Criteria.

Response

Created

Request

Response

Remove

Remove an IP from the IP List of the Criteria settings.

DELETE/api/MFADefaultSettings/Criteria/IPs

Query parameters

siteIdinteger (int32)

The Site ID of an object for which to modify the Criteria settings (optional).

Body

IP configuration.

ip*nullable string

Value that represents the IP

ipType*IPVersion (enum)

IP Version

0 = Version4,1 = Version6,2 = BothVersions

Response

No Content

Request

Response

Update

Update the MFA Safenet settings.

PUT/api/MFA/Safenet/{id}

Path parameters

id*integer (int32)

The id for which to modify the MFA settings.

Body

MFA settings.

namenullable string

The new name of the target multi-factor authentication .

descriptionnullable string

A user-defined multi-factor authentication description.

enablednullable boolean

Enable or disable the specified multi-factor authentication in a site.

inheritDefaultCriteriaSettingsnullable boolean

If true default criteria settings will be inherited.

Response

No Content

Request

Response

List

Retrieve Criteria Security Principal List of a Site Defaults object.

GET/api/MFADefaultSettings/Criteria/SecurityPrincipals

Query parameters

siteIdinteger (int32)

The SiteId of a Site Defaults object for which to retrieve the Criteria settings (optional).

Response

Success

Body

accountnullable string

The name of the user/group account the filter is added to.

typeUserType (enum)

User Type

1 = User,2 = Group,3 = ForeignSecurityPrincipal,4 = Computer

sidnullable string

The SID of the user/group account the filter is added to.

Request

Response

Add

Add a gateway IP to the Gateway IP List of the Criteria settings.

POST/api/MFADefaultSettings/Criteria/GatewayIPs

Query parameters

siteIdinteger (int32)

The Site ID of an object for which to modify the Criteria settings (optional).

Body

Gateway IP configuration.

ipnullable string

The IP of the gateway to add to the Criteria.

gatewayIdnullable integer (int32)

The ID of the gateway to add to the Criteria.

Response

Created

Request

Response

Get

Retrieve Criteria OS of a session server with the specified ID.

GET/api/MFA/{id}/Criteria/OSes

Path parameters

id*integer (int32)

The ID of a session server for which to retrieve the Criteria settings.

Response

Success

Body

chromeboolean

Whether Chrome is allowed or not.

androidboolean

Whether Android is allowed or not.

webClientboolean

Whether Web Client is allowed or not.

iOSboolean

Whether iOS is allowed or not.

linuxboolean

Whether Linux is allowed or not.

macboolean

Whether MAC OS is allowed or not.

wyseboolean

Whether Wyse is allowed or not.

windowsboolean

Whether Windows is allowed or not.

Request

Response

Add

Add a user, group or machine to the Security Principal List of the Criteria settings.

POST/api/MFADefaultSettings/Criteria/SecurityPrincipals

Query parameters

siteIdinteger (int32)

The Site ID of an object for which to modify the Criteria settings (optional).

Body

SecurityPrincipal configuration.

accountnullable string

The name of the account to add to the Criteria.

sidnullable string

The SID of the account to add to the Criteria.

Response

Created

Request

Response

Get

Retrieve Criteria OS of a Site Defaults object.

GET/api/MFADefaultSettings/Criteria/OSes

Query parameters

siteIdinteger (int32)

The SiteId of a Site Defaults object for which to retrieve the Criteria settings (optional).

Response

Success

Body

chromeboolean

Whether Chrome is allowed or not.

androidboolean

Whether Android is allowed or not.

webClientboolean

Whether Web Client is allowed or not.

iOSboolean

Whether iOS is allowed or not.

linuxboolean

Whether Linux is allowed or not.

macboolean

Whether MAC OS is allowed or not.

wyseboolean

Whether Wyse is allowed or not.

windowsboolean

Whether Windows is allowed or not.

Request

Response

Update

Modify the OS of the Criteria settings.

PUT/api/MFADefaultSettings/Criteria/OSes

Query parameters

siteIdinteger (int32)

The Site ID of an object for which to modify the Criteria settings (optional).

Body

OS configuration.

allowClientChromenullable boolean

Allow Chrome OS clients.

allowClientAndroidnullable boolean

Allow Android clients.

allowClientWebnullable boolean

Allow Web clients.

allowClientIOSnullable boolean

Allow IOS clients.

allowClientLinuxnullable boolean

Allow Linux clients.

allowClientMACnullable boolean

Allow Mac clients.

allowClientWindowsnullable boolean

Allow Windows clients.

allowClientWysenullable boolean

Allow Wyse clients.

Response

No Content

Request

Response

Update

Modify the OS of the Criteria settings.

PUT/api/MFA/{id}/Criteria/OSes

Path parameters

id*integer (int32)

The ID of a session server for which to modify the Criteria settings.

Body

OS configuration.

allowClientChromenullable boolean

Allow Chrome OS clients.

allowClientAndroidnullable boolean

Allow Android clients.

allowClientWebnullable boolean

Allow Web clients.

allowClientIOSnullable boolean

Allow IOS clients.

allowClientLinuxnullable boolean

Allow Linux clients.

allowClientMACnullable boolean

Allow Mac clients.

allowClientWindowsnullable boolean

Allow Windows clients.

allowClientWysenullable boolean

Allow Wyse clients.

Response

No Content

Request

Response

Add

Add an IP to the IP List of the Criteria settings.

POST/api/MFADefaultSettings/Criteria/IPs

Query parameters

siteIdinteger (int32)

The Site ID of an object for which to modify the Criteria settings (optional).

Body

IP configuration.

ip*nullable string

Value that represents the IP

ipType*IPVersion (enum)

IP Version

0 = Version4,1 = Version6,2 = BothVersions

Response

Created

Request

Response

Get Attribute

Retrieve a Radius Attribute List.

GET/api/MFA/{id}/RadiusAttr

Path parameters

id*integer (int32)

The ID of a MFA for which to retrieve the Radius Attribute.

Response

Success

Body

vendorIDinteger (int32)

RADIUS attribute vendor ID

attributeIDinteger (int32)

RADIUS attribute ID

attributeTypeRadiusAttrType (enum)

RADIUS attribute type

0 = Number,1 = String,2 = IP,3 = Time

radiusAttrNamenullable string

RADIUS attribute name

vendornullable string

RADIUS attribute vendor name

valuenullable string

RADIUS attribute Value

Request

Response

Delete Attribute

Delete a Radius Attribute from a site.

DELETE/api/MFA/{id}/RadiusAttr

Path parameters

id*integer (int32)

The ID of a RadiusAttr to remove from the site.

Body

The MFA Radius Attr Proc Model.

vendorID*integer (int32)

RADIUS attribute vendor ID

attributeID*integer (int32)

RADIUS attribute ID

value*nullable string

RADIUS attribute value The value has many forms:IP, Number, String, and Time. When setting the time it is expected that the time value is in epoch time.

radiusAttrName*nullable string

RADIUS attribute name

vendor*nullable string

RADIUS attribute vendor name

attributeType*RadiusAttrType (enum)

RADIUS attribute type

0 = Number,1 = String,2 = IP,3 = Time

Response

No Content

Request

Response

List

Retrieve Criteria IP List of a Site Defaults object.

GET/api/MFADefaultSettings/Criteria/IPs

Query parameters

siteIdinteger (int32)

The SiteId of a Site Defaults object for which to retrieve the Criteria settings (optional).

Response

Success

Body

iPv4snullable array of IPv4CriteriaEntry (object)

IPv4 criteria list

fromnullable string

tonullable string

iPv6snullable array of IPv6CriteriaEntry (object)

IPv6 criteria list

fromnullable string

tonullable string

Request

Response

Add Attribute

Add a new Radius Attribute.

POST/api/MFA/{id}/RadiusAttr

Path parameters

id*integer (int32)

MFA settings

Body

MFA Radius Attribute settings

vendorID*integer (int32)

RADIUS attribute vendor ID

attributeID*integer (int32)

RADIUS attribute ID

value*nullable string

RADIUS attribute value The value has many forms:IP, Number, String, and Time. When setting the time it is expected that the time value is in epoch time.

radiusAttrName*nullable string

RADIUS attribute name

vendor*nullable string

RADIUS attribute vendor name

attributeType*RadiusAttrType (enum)

RADIUS attribute type

0 = Number,1 = String,2 = IP,3 = Time

Response

Created

Body

vendorIDinteger (int32)

RADIUS attribute vendor ID

attributeIDinteger (int32)

RADIUS attribute ID

attributeTypeRadiusAttrType (enum)

RADIUS attribute type

0 = Number,1 = String,2 = IP,3 = Time

radiusAttrNamenullable string

RADIUS attribute name

vendornullable string

RADIUS attribute vendor name

valuenullable string

RADIUS attribute Value

Request

Response

Import Vendor details from file

Read and return MFA Vendor details from an ini file.

POST/api/MFAVendor/Details

Body

VendorFilestring (binary)

Vendor Details file to be uploaded.

VendorFilePathstring

Response

Success

Body

idinteger (int32)

Vendor Id.

namenullable string

Vendor Name.

vendorAttributesnullable array of MFAVendorAttributes (object)

Vendor Attributes.

idinteger (int32)

Vendor Attribute Id.

namenullable string

Vendor Attribute Name.

typeRadiusAttrType (enum)

RADIUS attribute type

0 = Number,1 = String,2 = IP,3 = Time

Request

Response

Get

Retrieve information about one MFA by ID.

GET/api/MFA/{id}

Path parameters

id*integer (int32)

The ID of a MFA for which to retrieve the information.

Response

Success

Body

idinteger (int32)

ID of the object.

adminCreatenullable string

User who created the object.

adminLastModnullable string

User who last modified the object.

timeCreatestring (date-time)

Time when the object was created.

timeLastModstring (date-time)

Time when the object was last modified.

namenullable string

Name

siteIdinteger (int32)

Site ID

descriptionnullable string

Description

enabledboolean

Whether MFA provider is enabled or not.

typeMFAType (enum)

Provider Type

1 = Deepnet,2 = SafeNet,3 = Radius,4 = AzureRadius,5 = DuoRadius,6 = FortiRadius,7 = TekRadius,8 = GAuthTOTP,9 = TOTP,10 = MicrosoftTOTP,11 = EmailOTP

inheritDefaultCriteriaSettingsboolean

If true default criteria restriction settings will be inherited.

criteriaMFACriteria (object)

MFA Criteria

securityPrincipalsSecurityPrincipalsCriteria (object)

Security Principals Criteria

enabledboolean

Whether the Security Principals Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of SecurityPrincipalCriteriaEntry (object)

User criteria list

accountnullable string

The name of the user/group account the filter is added to.

typeUserType (enum)

User Type

1 = User,2 = Group,3 = ForeignSecurityPrincipal,4 = Computer

sidnullable string

The SID of the user/group account the filter is added to.

gatewaysGatewaysCriteria (object)

Gateways Criteria

enabledboolean

Whether the Gateways Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of GatewayCriteriaEntry (object)

Gateway criteria list

gatewayIPnullable string

The gateway IP.

oSsOSsCriteria (object)

OS Criteria Settings

enabledboolean

Whether the OSs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedOSesAllowedOperatingSystems (object)

Allowed Operating Systems

chromeboolean

Whether Chrome is allowed or not.

androidboolean

Whether Android is allowed or not.

webClientboolean

Whether Web Client is allowed or not.

iOSboolean

Whether iOS is allowed or not.

linuxboolean

Whether Linux is allowed or not.

macboolean

Whether MAC OS is allowed or not.

wyseboolean

Whether Wyse is allowed or not.

windowsboolean

Whether Windows is allowed or not.

iPsIPsCriteria (object)

IPs Criteria

enabledboolean

Whether the IPs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedIPsAllowedIPsCriteria (object)

Allowed IPs Criteria

iPv4snullable array of IPv4CriteriaEntry (object)

IPv4 criteria list

fromnullable string

tonullable string

iPv6snullable array of IPv6CriteriaEntry (object)

IPv6 criteria list

fromnullable string

tonullable string

hardwareIDsHardwareIDsCriteria (object)

Hardware IDs Criteria

enabledboolean

Whether the Hardware IDs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of HardwareIDCriteriaEntry (object)

Hardware IDs criteria list

hardwareIDnullable string

The hardware ID.

accessAccessType (enum)

Access type options

0 = DenyCriteriaWhen,1 = AllowCriteriaWhen

devicesDevicesCriteria (object)

Devices Criteria

enabledboolean

Whether the Devices Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of ClientDeviceCriteriaEntry (object)

Client criteria list

clientnullable string

The name of the client device.

Request

Response

Update

Update the Criteria settings of an MFA with the specified ID.

PUT/api/MFA/{id}/Criteria

Path parameters

id*integer (int32)

The ID of an MFA for which to modify the Criteria settings.

Body

Criteria settings.

accessAccessType (enum)

Access type options

0 = DenyCriteriaWhen,1 = AllowCriteriaWhen

securityPrincipalsEnablednullable boolean

Whether the Security Principals criteria is enabled or not

securityPrincipalsMatchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

gatewaysEnablednullable boolean

Whether the Gateways criteria is enabled or not

gatewaysMatchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

devicesEnablednullable boolean

Whether the Devices criteria is enabled or not

devicesMatchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

oSsEnablednullable boolean

Whether the OSs criteria is enabled or not

oSsMatchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

iPsEnablednullable boolean

Whether the IPs criteria is enabled or not

iPsMatchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

hardwareIDsEnablednullable boolean

Whether the HardwareIDs criteria is enabled or not

hardwareIDsMatchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

Response

No Content

Request

Response

Update

Update the Criteria settings of a MFA Default object.

PUT/api/MFADefaultSettings/Criteria

Query parameters

siteIdinteger (int32)

The SiteId of a MFA Default object for which to modify the Criteria settings (optional).

Body

MFA Criteria settings (optional).

accessAccessType (enum)

Access type options

0 = DenyCriteriaWhen,1 = AllowCriteriaWhen

securityPrincipalsEnablednullable boolean

Whether the Security Principals criteria is enabled or not

securityPrincipalsMatchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

gatewaysEnablednullable boolean

Whether the Gateways criteria is enabled or not

gatewaysMatchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

devicesEnablednullable boolean

Whether the Devices criteria is enabled or not

devicesMatchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

oSsEnablednullable boolean

Whether the OSs criteria is enabled or not

oSsMatchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

iPsEnablednullable boolean

Whether the IPs criteria is enabled or not

iPsMatchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

hardwareIDsEnablednullable boolean

Whether the HardwareIDs criteria is enabled or not

hardwareIDsMatchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

Response

No Content

Request

Response

Get

Retrieve the Criteria settings of an MFA with the specified ID.

GET/api/MFA/{id}/Criteria

Path parameters

id*integer (int32)

The ID of an MFA for which to retrieve the Criteria settings.

Response

Success

Body

securityPrincipalsSecurityPrincipalsCriteria (object)

Security Principals Criteria

enabledboolean

Whether the Security Principals Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of SecurityPrincipalCriteriaEntry (object)

User criteria list

accountnullable string

The name of the user/group account the filter is added to.

typeUserType (enum)

User Type

1 = User,2 = Group,3 = ForeignSecurityPrincipal,4 = Computer

sidnullable string

The SID of the user/group account the filter is added to.

gatewaysGatewaysCriteria (object)

Gateways Criteria

enabledboolean

Whether the Gateways Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of GatewayCriteriaEntry (object)

Gateway criteria list

gatewayIPnullable string

The gateway IP.

oSsOSsCriteria (object)

OS Criteria Settings

enabledboolean

Whether the OSs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedOSesAllowedOperatingSystems (object)

Allowed Operating Systems

chromeboolean

Whether Chrome is allowed or not.

androidboolean

Whether Android is allowed or not.

webClientboolean

Whether Web Client is allowed or not.

iOSboolean

Whether iOS is allowed or not.

linuxboolean

Whether Linux is allowed or not.

macboolean

Whether MAC OS is allowed or not.

wyseboolean

Whether Wyse is allowed or not.

windowsboolean

Whether Windows is allowed or not.

iPsIPsCriteria (object)

IPs Criteria

enabledboolean

Whether the IPs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedIPsAllowedIPsCriteria (object)

Allowed IPs Criteria

iPv4snullable array of IPv4CriteriaEntry (object)

IPv4 criteria list

fromnullable string

tonullable string

iPv6snullable array of IPv6CriteriaEntry (object)

IPv6 criteria list

fromnullable string

tonullable string

hardwareIDsHardwareIDsCriteria (object)

Hardware IDs Criteria

enabledboolean

Whether the Hardware IDs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of HardwareIDCriteriaEntry (object)

Hardware IDs criteria list

hardwareIDnullable string

The hardware ID.

accessAccessType (enum)

Access type options

0 = DenyCriteriaWhen,1 = AllowCriteriaWhen

devicesDevicesCriteria (object)

Devices Criteria

enabledboolean

Whether the Devices Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of ClientDeviceCriteriaEntry (object)

Client criteria list

clientnullable string

The name of the client device.

Request

Response

Get

Retrieve the MFA Default settings.

GET/api/MFADefaultSettings

Query parameters

SiteIdinteger (int32)

Site ID for which to retrieve MFA Default settings (optional)

Response

Success

Body

criteriaMFACriteria (object)

MFA Criteria

securityPrincipalsSecurityPrincipalsCriteria (object)

Security Principals Criteria

enabledboolean

Whether the Security Principals Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of SecurityPrincipalCriteriaEntry (object)

User criteria list

accountnullable string

The name of the user/group account the filter is added to.

typeUserType (enum)

User Type

1 = User,2 = Group,3 = ForeignSecurityPrincipal,4 = Computer

sidnullable string

The SID of the user/group account the filter is added to.

gatewaysGatewaysCriteria (object)

Gateways Criteria

enabledboolean

Whether the Gateways Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of GatewayCriteriaEntry (object)

Gateway criteria list

gatewayIPnullable string

The gateway IP.

oSsOSsCriteria (object)

OS Criteria Settings

enabledboolean

Whether the OSs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedOSesAllowedOperatingSystems (object)

Allowed Operating Systems

chromeboolean

Whether Chrome is allowed or not.

androidboolean

Whether Android is allowed or not.

webClientboolean

Whether Web Client is allowed or not.

iOSboolean

Whether iOS is allowed or not.

linuxboolean

Whether Linux is allowed or not.

macboolean

Whether MAC OS is allowed or not.

wyseboolean

Whether Wyse is allowed or not.

windowsboolean

Whether Windows is allowed or not.

iPsIPsCriteria (object)

IPs Criteria

enabledboolean

Whether the IPs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedIPsAllowedIPsCriteria (object)

Allowed IPs Criteria

iPv4snullable array of IPv4CriteriaEntry (object)

IPv4 criteria list

fromnullable string

tonullable string

iPv6snullable array of IPv6CriteriaEntry (object)

IPv6 criteria list

fromnullable string

tonullable string

hardwareIDsHardwareIDsCriteria (object)

Hardware IDs Criteria

enabledboolean

Whether the Hardware IDs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of HardwareIDCriteriaEntry (object)

Hardware IDs criteria list

hardwareIDnullable string

The hardware ID.

accessAccessType (enum)

Access type options

0 = DenyCriteriaWhen,1 = AllowCriteriaWhen

devicesDevicesCriteria (object)

Devices Criteria

enabledboolean

Whether the Devices Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of ClientDeviceCriteriaEntry (object)

Client criteria list

clientnullable string

The name of the client device.

siteIdinteger (int32)

Site ID

Request

Response

List

Retrieve information about one or multiple MFA.

GET/api/MFA

Query parameters

SiteIdinteger (int32)

Site ID from which to retrieve the Multi Factor Authentication information (optional).

Namestring

The name of the multi factor authentication for which to retrieve the information. This must be the actual MFA name used in the RAS farm.

Response

Success

Body

idinteger (int32)

ID of the object.

adminCreatenullable string

User who created the object.

adminLastModnullable string

User who last modified the object.

timeCreatestring (date-time)

Time when the object was created.

timeLastModstring (date-time)

Time when the object was last modified.

namenullable string

Name

siteIdinteger (int32)

Site ID

descriptionnullable string

Description

enabledboolean

Whether MFA provider is enabled or not.

typeMFAType (enum)

Provider Type

1 = Deepnet,2 = SafeNet,3 = Radius,4 = AzureRadius,5 = DuoRadius,6 = FortiRadius,7 = TekRadius,8 = GAuthTOTP,9 = TOTP,10 = MicrosoftTOTP,11 = EmailOTP

inheritDefaultCriteriaSettingsboolean

If true default criteria restriction settings will be inherited.

criteriaMFACriteria (object)

MFA Criteria

securityPrincipalsSecurityPrincipalsCriteria (object)

Security Principals Criteria

enabledboolean

Whether the Security Principals Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of SecurityPrincipalCriteriaEntry (object)

User criteria list

accountnullable string

The name of the user/group account the filter is added to.

typeUserType (enum)

User Type

1 = User,2 = Group,3 = ForeignSecurityPrincipal,4 = Computer

sidnullable string

The SID of the user/group account the filter is added to.

gatewaysGatewaysCriteria (object)

Gateways Criteria

enabledboolean

Whether the Gateways Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of GatewayCriteriaEntry (object)

Gateway criteria list

gatewayIPnullable string

The gateway IP.

oSsOSsCriteria (object)

OS Criteria Settings

enabledboolean

Whether the OSs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedOSesAllowedOperatingSystems (object)

Allowed Operating Systems

chromeboolean

Whether Chrome is allowed or not.

androidboolean

Whether Android is allowed or not.

webClientboolean

Whether Web Client is allowed or not.

iOSboolean

Whether iOS is allowed or not.

linuxboolean

Whether Linux is allowed or not.

macboolean

Whether MAC OS is allowed or not.

wyseboolean

Whether Wyse is allowed or not.

windowsboolean

Whether Windows is allowed or not.

iPsIPsCriteria (object)

IPs Criteria

enabledboolean

Whether the IPs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedIPsAllowedIPsCriteria (object)

Allowed IPs Criteria

iPv4snullable array of IPv4CriteriaEntry (object)

IPv4 criteria list

fromnullable string

tonullable string

iPv6snullable array of IPv6CriteriaEntry (object)

IPv6 criteria list

fromnullable string

tonullable string

hardwareIDsHardwareIDsCriteria (object)

Hardware IDs Criteria

enabledboolean

Whether the Hardware IDs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of HardwareIDCriteriaEntry (object)

Hardware IDs criteria list

hardwareIDnullable string

The hardware ID.

accessAccessType (enum)

Access type options

0 = DenyCriteriaWhen,1 = AllowCriteriaWhen

devicesDevicesCriteria (object)

Devices Criteria

enabledboolean

Whether the Devices Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of ClientDeviceCriteriaEntry (object)

Client criteria list

clientnullable string

The name of the client device.

Request

Response

Get

Retrieve the Criteria settings of a MFA Default object.

GET/api/MFADefaultSettings/Criteria

Query parameters

siteIdinteger (int32)

The SiteId of a MFA Default object for which to retrieve the Criteria settings (optional).

Response

Success

Body

securityPrincipalsSecurityPrincipalsCriteria (object)

Security Principals Criteria

enabledboolean

Whether the Security Principals Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of SecurityPrincipalCriteriaEntry (object)

User criteria list

accountnullable string

The name of the user/group account the filter is added to.

typeUserType (enum)

User Type

1 = User,2 = Group,3 = ForeignSecurityPrincipal,4 = Computer

sidnullable string

The SID of the user/group account the filter is added to.

gatewaysGatewaysCriteria (object)

Gateways Criteria

enabledboolean

Whether the Gateways Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of GatewayCriteriaEntry (object)

Gateway criteria list

gatewayIPnullable string

The gateway IP.

oSsOSsCriteria (object)

OS Criteria Settings

enabledboolean

Whether the OSs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedOSesAllowedOperatingSystems (object)

Allowed Operating Systems

chromeboolean

Whether Chrome is allowed or not.

androidboolean

Whether Android is allowed or not.

webClientboolean

Whether Web Client is allowed or not.

iOSboolean

Whether iOS is allowed or not.

linuxboolean

Whether Linux is allowed or not.

macboolean

Whether MAC OS is allowed or not.

wyseboolean

Whether Wyse is allowed or not.

windowsboolean

Whether Windows is allowed or not.

iPsIPsCriteria (object)

IPs Criteria

enabledboolean

Whether the IPs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedIPsAllowedIPsCriteria (object)

Allowed IPs Criteria

iPv4snullable array of IPv4CriteriaEntry (object)

IPv4 criteria list

fromnullable string

tonullable string

iPv6snullable array of IPv6CriteriaEntry (object)

IPv6 criteria list

fromnullable string

tonullable string

hardwareIDsHardwareIDsCriteria (object)

Hardware IDs Criteria

enabledboolean

Whether the Hardware IDs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of HardwareIDCriteriaEntry (object)

Hardware IDs criteria list

hardwareIDnullable string

The hardware ID.

accessAccessType (enum)

Access type options

0 = DenyCriteriaWhen,1 = AllowCriteriaWhen

devicesDevicesCriteria (object)

Devices Criteria

enabledboolean

Whether the Devices Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of ClientDeviceCriteriaEntry (object)

Client criteria list

clientnullable string

The name of the client device.

Request

Response

Create

Create a new Safenet MFA.

POST/api/MFA/Safenet

Body

MFA settings

name*nullable string

The name of the target Multi Factor Authentication. This must be the actual Multi Factor Authentication name used in the RAS farm.

siteIdinteger (int32)

Site ID in which to modify the specified Multi Factor Authentication. If the parameter is omitted, the site ID of the Licensing Server will be used.

descriptionnullable string

A user-defined Multi Factor Authentication description.

enabledboolean

Enable or disable the Multi Factor Authentication upon creation. If the parameter is omitted, the Multi Factor Authentication is initialised as Disabled.

safenetAuthModeSafeNetAuthMode (enum)

SafeNet Authentication Mode

0 = MandatoryForAllUsers,1 = CreateTokenForDomainAuthenticatedUsers,2 = UsersWithSafeNetAcc

otpServiceURL*nullable string

OTP Service URL

userRepositorynullable string

A value representing User Store

tmsWebApiURLnullable string

The URL of the web service

Response

Created

Body

idinteger (int32)

ID of the object.

adminCreatenullable string

User who created the object.

adminLastModnullable string

User who last modified the object.

timeCreatestring (date-time)

Time when the object was created.

timeLastModstring (date-time)

Time when the object was last modified.

namenullable string

Name

siteIdinteger (int32)

Site ID

descriptionnullable string

Description

enabledboolean

Whether MFA provider is enabled or not.

typeMFAType (enum)

Provider Type

1 = Deepnet,2 = SafeNet,3 = Radius,4 = AzureRadius,5 = DuoRadius,6 = FortiRadius,7 = TekRadius,8 = GAuthTOTP,9 = TOTP,10 = MicrosoftTOTP,11 = EmailOTP

inheritDefaultCriteriaSettingsboolean

If true default criteria restriction settings will be inherited.

criteriaMFACriteria (object)

MFA Criteria

securityPrincipalsSecurityPrincipalsCriteria (object)

Security Principals Criteria

enabledboolean

Whether the Security Principals Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of SecurityPrincipalCriteriaEntry (object)

User criteria list

accountnullable string

The name of the user/group account the filter is added to.

typeUserType (enum)

User Type

1 = User,2 = Group,3 = ForeignSecurityPrincipal,4 = Computer

sidnullable string

The SID of the user/group account the filter is added to.

gatewaysGatewaysCriteria (object)

Gateways Criteria

enabledboolean

Whether the Gateways Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of GatewayCriteriaEntry (object)

Gateway criteria list

gatewayIPnullable string

The gateway IP.

oSsOSsCriteria (object)

OS Criteria Settings

enabledboolean

Whether the OSs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedOSesAllowedOperatingSystems (object)

Allowed Operating Systems

chromeboolean

Whether Chrome is allowed or not.

androidboolean

Whether Android is allowed or not.

webClientboolean

Whether Web Client is allowed or not.

iOSboolean

Whether iOS is allowed or not.

linuxboolean

Whether Linux is allowed or not.

macboolean

Whether MAC OS is allowed or not.

wyseboolean

Whether Wyse is allowed or not.

windowsboolean

Whether Windows is allowed or not.

iPsIPsCriteria (object)

IPs Criteria

enabledboolean

Whether the IPs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

allowedIPsAllowedIPsCriteria (object)

Allowed IPs Criteria

iPv4snullable array of IPv4CriteriaEntry (object)

IPv4 criteria list

fromnullable string

tonullable string

iPv6snullable array of IPv6CriteriaEntry (object)

IPv6 criteria list

fromnullable string

tonullable string

hardwareIDsHardwareIDsCriteria (object)

Hardware IDs Criteria

enabledboolean

Whether the Hardware IDs Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of HardwareIDCriteriaEntry (object)

Hardware IDs criteria list

hardwareIDnullable string

The hardware ID.

accessAccessType (enum)

Access type options

0 = DenyCriteriaWhen,1 = AllowCriteriaWhen

devicesDevicesCriteria (object)

Devices Criteria

enabledboolean

Whether the Devices Criteria is enabled or not

matchingModeMatchingModeType (enum)

Matching mode type options

0 = IsNotOneOfTheFollowing,1 = IsOneOfTheFollowing

membersnullable array of ClientDeviceCriteriaEntry (object)

Client criteria list

clientnullable string

The name of the client device.

authModeSafeNetAuthMode (enum)

SafeNet Authentication Mode

0 = MandatoryForAllUsers,1 = CreateTokenForDomainAuthenticatedUsers,2 = UsersWithSafeNetAcc

otpServiceURLnullable string

OTP Service URL

userRepositorynullable string

A value representing User Store

tmsWebApiURLnullable string

The URL of the web service

Request

Response

const response = await fetch('/api/MFA/TOTP/{id}', {
    method: 'PUT',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({}),
});
const data = await response.json();

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

const response = await fetch('/api/MFA/TOTP', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "displayName": "text",
      "name": "text"
    }),
});
const data = await response.json();

{
  "adminCreate": "text",
  "adminLastMod": "text",
  "timeCreate": "2024-11-07T10:03:13.879Z",
  "timeLastMod": "2024-11-07T10:03:13.879Z",
  "name": "text",
  "description": "text",
  "enabled": false,
  "type": [
    "1 = Deepnet",
    "2 = SafeNet",
    "3 = Radius",
    "4 = AzureRadius",
    "5 = DuoRadius",
    "6 = FortiRadius",
    "7 = TekRadius",
    "8 = GAuthTOTP",
    "9 = TOTP",
    "10 = MicrosoftTOTP",
    "11 = EmailOTP"
  ],
  "inheritDefaultCriteriaSettings": false,
  "criteria": {
    "securityPrincipals": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "account": "text",
          "type": [
            "1 = User",
            "2 = Group",
            "3 = ForeignSecurityPrincipal",
            "4 = Computer"
          ],
          "sid": "text"
        }
      ]
    },
    "gateways": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "gatewayIP": "text"
        }
      ]
    },
    "oSs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "allowedOSes": {
        "chrome": false,
        "android": false,
        "webClient": false,
        "iOS": false,
        "linux": false,
        "mac": false,
        "wyse": false,
        "windows": false
      }
    },
    "iPs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "allowedIPs": {
        "iPv4s": [
          {
            "from": "text",
            "to": "text"
          }
        ],
        "iPv6s": [
          {
            "from": "text",
            "to": "text"
          }
        ]
      }
    },
    "hardwareIDs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "hardwareID": "text"
        }
      ]
    },
    "access": [
      "0 = DenyCriteriaWhen",
      "1 = AllowCriteriaWhen"
    ],
    "devices": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "client": "text"
        }
      ]
    }
  },
  "displayName": "text",
  "userMessagePrompt": "text",
  "userEnrollment": [
    "0 = Allow",
    "1 = AllowUntil",
    "2 = DoNotAllow"
  ],
  "showInformationForUnenrolledUsers": [
    "0 = Always",
    "1 = IfEnrollmentIsAllowed",
    "2 = Never"
  ],
  "untilDateTime": "2024-11-07T10:03:13.879Z"
}

const response = await fetch('/api/MFA/ValidateADAccess', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

const response = await fetch('/api/MFA/{id}', {
    method: 'DELETE',
    headers: {},
});
const data = await response.json();

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

const response = await fetch('/api/MFADefaultSettings/Criteria/HardwareIDs', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

[
  {
    "hardwareID": "text"
  }
]

const response = await fetch('/api/MFADefaultSettings/Criteria/GatewayIPs', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

[
  {
    "gatewayIP": "text"
  }
]

const response = await fetch('/api/MFADefaultSettings/Criteria/Devices', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

[
  {
    "client": "text"
  }
]

const response = await fetch('/api/MFADefaultSettings/Criteria/HardwareIDs', {
    method: 'DELETE',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "hardwareID": "text"
    }),
});
const data = await response.json();

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

const response = await fetch('/api/MFADefaultSettings/Criteria/GatewayIPs', {
    method: 'DELETE',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "ip": "text"
    }),
});
const data = await response.json();

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

const response = await fetch('/api/MFADefaultSettings/Criteria/Devices', {
    method: 'DELETE',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "clientDeviceName": "text"
    }),
});
const data = await response.json();

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

const response = await fetch('/api/MFADefaultSettings/Criteria/SecurityPrincipals', {
    method: 'DELETE',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({}),
});
const data = await response.json();

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

const response = await fetch('/api/MFADefaultSettings/Criteria/HardwareIDs', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "hardwareID": "text"
    }),
});
const data = await response.json();

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

const response = await fetch('/api/MFADefaultSettings/Criteria/Devices', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "clientDeviceName": "text"
    }),
});
const data = await response.json();

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

const response = await fetch('/api/MFADefaultSettings/Criteria/IPs', {
    method: 'DELETE',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "ip": "text",
      "ipType": [
        "0 = Version4",
        "1 = Version6",
        "2 = BothVersions"
      ]
    }),
});
const data = await response.json();

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

const response = await fetch('/api/MFA/Safenet/{id}', {
    method: 'PUT',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({}),
});
const data = await response.json();

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

const response = await fetch('/api/MFADefaultSettings/Criteria/SecurityPrincipals', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

[
  {
    "account": "text",
    "type": [
      "1 = User",
      "2 = Group",
      "3 = ForeignSecurityPrincipal",
      "4 = Computer"
    ],
    "sid": "text"
  }
]

const response = await fetch('/api/MFADefaultSettings/Criteria/GatewayIPs', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({}),
});
const data = await response.json();

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

const response = await fetch('/api/MFA/{id}/Criteria/OSes', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

{
  "chrome": false,
  "android": false,
  "webClient": false,
  "iOS": false,
  "linux": false,
  "mac": false,
  "wyse": false,
  "windows": false
}

const response = await fetch('/api/MFADefaultSettings/Criteria/SecurityPrincipals', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({}),
});
const data = await response.json();

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

const response = await fetch('/api/MFADefaultSettings/Criteria/OSes', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

{
  "chrome": false,
  "android": false,
  "webClient": false,
  "iOS": false,
  "linux": false,
  "mac": false,
  "wyse": false,
  "windows": false
}

const response = await fetch('/api/MFADefaultSettings/Criteria/OSes', {
    method: 'PUT',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({}),
});
const data = await response.json();

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

const response = await fetch('/api/MFA/{id}/Criteria/OSes', {
    method: 'PUT',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({}),
});
const data = await response.json();

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

const response = await fetch('/api/MFADefaultSettings/Criteria/IPs', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "ip": "text",
      "ipType": [
        "0 = Version4",
        "1 = Version6",
        "2 = BothVersions"
      ]
    }),
});
const data = await response.json();

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

const response = await fetch('/api/MFA/{id}/RadiusAttr', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

{
  "attributeType": [
    "0 = Number",
    "1 = String",
    "2 = IP",
    "3 = Time"
  ],
  "radiusAttrName": "text",
  "vendor": "text",
  "value": "text"
}

const response = await fetch('/api/MFA/{id}/RadiusAttr', {
    method: 'DELETE',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "attributeType": [
        "0 = Number",
        "1 = String",
        "2 = IP",
        "3 = Time"
      ],
      "radiusAttrName": "text",
      "value": "text",
      "vendor": "text"
    }),
});
const data = await response.json();

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

const response = await fetch('/api/MFADefaultSettings/Criteria/IPs', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

{
  "iPv4s": [
    {
      "from": "text",
      "to": "text"
    }
  ],
  "iPv6s": [
    {
      "from": "text",
      "to": "text"
    }
  ]
}

const response = await fetch('/api/MFA/{id}/RadiusAttr', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "attributeType": [
        "0 = Number",
        "1 = String",
        "2 = IP",
        "3 = Time"
      ],
      "radiusAttrName": "text",
      "value": "text",
      "vendor": "text"
    }),
});
const data = await response.json();

{
  "attributeType": [
    "0 = Number",
    "1 = String",
    "2 = IP",
    "3 = Time"
  ],
  "radiusAttrName": "text",
  "vendor": "text",
  "value": "text"
}

const response = await fetch('/api/MFAVendor/Details', {
    method: 'POST',
    headers: {
      "Content-Type": "multipart/form-data"
    },
    body: JSON.stringify({}),
});
const data = await response.json();

[
  {
    "name": "text",
    "vendorAttributes": [
      {
        "name": "text",
        "type": [
          "0 = Number",
          "1 = String",
          "2 = IP",
          "3 = Time"
        ]
      }
    ]
  }
]

const response = await fetch('/api/MFA/{id}', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

{
  "adminCreate": "text",
  "adminLastMod": "text",
  "timeCreate": "2024-11-07T10:03:13.879Z",
  "timeLastMod": "2024-11-07T10:03:13.879Z",
  "name": "text",
  "description": "text",
  "enabled": false,
  "type": [
    "1 = Deepnet",
    "2 = SafeNet",
    "3 = Radius",
    "4 = AzureRadius",
    "5 = DuoRadius",
    "6 = FortiRadius",
    "7 = TekRadius",
    "8 = GAuthTOTP",
    "9 = TOTP",
    "10 = MicrosoftTOTP",
    "11 = EmailOTP"
  ],
  "inheritDefaultCriteriaSettings": false,
  "criteria": {
    "securityPrincipals": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "account": "text",
          "type": [
            "1 = User",
            "2 = Group",
            "3 = ForeignSecurityPrincipal",
            "4 = Computer"
          ],
          "sid": "text"
        }
      ]
    },
    "gateways": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "gatewayIP": "text"
        }
      ]
    },
    "oSs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "allowedOSes": {
        "chrome": false,
        "android": false,
        "webClient": false,
        "iOS": false,
        "linux": false,
        "mac": false,
        "wyse": false,
        "windows": false
      }
    },
    "iPs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "allowedIPs": {
        "iPv4s": [
          {
            "from": "text",
            "to": "text"
          }
        ],
        "iPv6s": [
          {
            "from": "text",
            "to": "text"
          }
        ]
      }
    },
    "hardwareIDs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "hardwareID": "text"
        }
      ]
    },
    "access": [
      "0 = DenyCriteriaWhen",
      "1 = AllowCriteriaWhen"
    ],
    "devices": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "client": "text"
        }
      ]
    }
  }
}

const response = await fetch('/api/MFA/{id}/Criteria', {
    method: 'PUT',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({}),
});
const data = await response.json();

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

const response = await fetch('/api/MFADefaultSettings/Criteria', {
    method: 'PUT',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({}),
});
const data = await response.json();

{
  "type": "text",
  "title": "text",
  "detail": "text",
  "instance": "text"
}

const response = await fetch('/api/MFA/{id}/Criteria', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

{
  "securityPrincipals": {
    "enabled": false,
    "matchingMode": [
      "0 = IsNotOneOfTheFollowing",
      "1 = IsOneOfTheFollowing"
    ],
    "members": [
      {
        "account": "text",
        "type": [
          "1 = User",
          "2 = Group",
          "3 = ForeignSecurityPrincipal",
          "4 = Computer"
        ],
        "sid": "text"
      }
    ]
  },
  "gateways": {
    "enabled": false,
    "matchingMode": [
      "0 = IsNotOneOfTheFollowing",
      "1 = IsOneOfTheFollowing"
    ],
    "members": [
      {
        "gatewayIP": "text"
      }
    ]
  },
  "oSs": {
    "enabled": false,
    "matchingMode": [
      "0 = IsNotOneOfTheFollowing",
      "1 = IsOneOfTheFollowing"
    ],
    "allowedOSes": {
      "chrome": false,
      "android": false,
      "webClient": false,
      "iOS": false,
      "linux": false,
      "mac": false,
      "wyse": false,
      "windows": false
    }
  },
  "iPs": {
    "enabled": false,
    "matchingMode": [
      "0 = IsNotOneOfTheFollowing",
      "1 = IsOneOfTheFollowing"
    ],
    "allowedIPs": {
      "iPv4s": [
        {
          "from": "text",
          "to": "text"
        }
      ],
      "iPv6s": [
        {
          "from": "text",
          "to": "text"
        }
      ]
    }
  },
  "hardwareIDs": {
    "enabled": false,
    "matchingMode": [
      "0 = IsNotOneOfTheFollowing",
      "1 = IsOneOfTheFollowing"
    ],
    "members": [
      {
        "hardwareID": "text"
      }
    ]
  },
  "access": [
    "0 = DenyCriteriaWhen",
    "1 = AllowCriteriaWhen"
  ],
  "devices": {
    "enabled": false,
    "matchingMode": [
      "0 = IsNotOneOfTheFollowing",
      "1 = IsOneOfTheFollowing"
    ],
    "members": [
      {
        "client": "text"
      }
    ]
  }
}

const response = await fetch('/api/MFADefaultSettings', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

{
  "criteria": {
    "securityPrincipals": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "account": "text",
          "type": [
            "1 = User",
            "2 = Group",
            "3 = ForeignSecurityPrincipal",
            "4 = Computer"
          ],
          "sid": "text"
        }
      ]
    },
    "gateways": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "gatewayIP": "text"
        }
      ]
    },
    "oSs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "allowedOSes": {
        "chrome": false,
        "android": false,
        "webClient": false,
        "iOS": false,
        "linux": false,
        "mac": false,
        "wyse": false,
        "windows": false
      }
    },
    "iPs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "allowedIPs": {
        "iPv4s": [
          {
            "from": "text",
            "to": "text"
          }
        ],
        "iPv6s": [
          {
            "from": "text",
            "to": "text"
          }
        ]
      }
    },
    "hardwareIDs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "hardwareID": "text"
        }
      ]
    },
    "access": [
      "0 = DenyCriteriaWhen",
      "1 = AllowCriteriaWhen"
    ],
    "devices": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "client": "text"
        }
      ]
    }
  }
}

const response = await fetch('/api/MFA', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

[
  {
    "adminCreate": "text",
    "adminLastMod": "text",
    "timeCreate": "2024-11-07T10:03:13.879Z",
    "timeLastMod": "2024-11-07T10:03:13.879Z",
    "name": "text",
    "description": "text",
    "enabled": false,
    "type": [
      "1 = Deepnet",
      "2 = SafeNet",
      "3 = Radius",
      "4 = AzureRadius",
      "5 = DuoRadius",
      "6 = FortiRadius",
      "7 = TekRadius",
      "8 = GAuthTOTP",
      "9 = TOTP",
      "10 = MicrosoftTOTP",
      "11 = EmailOTP"
    ],
    "inheritDefaultCriteriaSettings": false,
    "criteria": {
      "securityPrincipals": {
        "enabled": false,
        "matchingMode": [
          "0 = IsNotOneOfTheFollowing",
          "1 = IsOneOfTheFollowing"
        ],
        "members": [
          {
            "account": "text",
            "type": [
              "1 = User",
              "2 = Group",
              "3 = ForeignSecurityPrincipal",
              "4 = Computer"
            ],
            "sid": "text"
          }
        ]
      },
      "gateways": {
        "enabled": false,
        "matchingMode": [
          "0 = IsNotOneOfTheFollowing",
          "1 = IsOneOfTheFollowing"
        ],
        "members": [
          {
            "gatewayIP": "text"
          }
        ]
      },
      "oSs": {
        "enabled": false,
        "matchingMode": [
          "0 = IsNotOneOfTheFollowing",
          "1 = IsOneOfTheFollowing"
        ],
        "allowedOSes": {
          "chrome": false,
          "android": false,
          "webClient": false,
          "iOS": false,
          "linux": false,
          "mac": false,
          "wyse": false,
          "windows": false
        }
      },
      "iPs": {
        "enabled": false,
        "matchingMode": [
          "0 = IsNotOneOfTheFollowing",
          "1 = IsOneOfTheFollowing"
        ],
        "allowedIPs": {
          "iPv4s": [
            {
              "from": "text",
              "to": "text"
            }
          ],
          "iPv6s": [
            {
              "from": "text",
              "to": "text"
            }
          ]
        }
      },
      "hardwareIDs": {
        "enabled": false,
        "matchingMode": [
          "0 = IsNotOneOfTheFollowing",
          "1 = IsOneOfTheFollowing"
        ],
        "members": [
          {
            "hardwareID": "text"
          }
        ]
      },
      "access": [
        "0 = DenyCriteriaWhen",
        "1 = AllowCriteriaWhen"
      ],
      "devices": {
        "enabled": false,
        "matchingMode": [
          "0 = IsNotOneOfTheFollowing",
          "1 = IsOneOfTheFollowing"
        ],
        "members": [
          {
            "client": "text"
          }
        ]
      }
    }
  }
]

const response = await fetch('/api/MFADefaultSettings/Criteria', {
    method: 'GET',
    headers: {},
});
const data = await response.json();

{
  "securityPrincipals": {
    "enabled": false,
    "matchingMode": [
      "0 = IsNotOneOfTheFollowing",
      "1 = IsOneOfTheFollowing"
    ],
    "members": [
      {
        "account": "text",
        "type": [
          "1 = User",
          "2 = Group",
          "3 = ForeignSecurityPrincipal",
          "4 = Computer"
        ],
        "sid": "text"
      }
    ]
  },
  "gateways": {
    "enabled": false,
    "matchingMode": [
      "0 = IsNotOneOfTheFollowing",
      "1 = IsOneOfTheFollowing"
    ],
    "members": [
      {
        "gatewayIP": "text"
      }
    ]
  },
  "oSs": {
    "enabled": false,
    "matchingMode": [
      "0 = IsNotOneOfTheFollowing",
      "1 = IsOneOfTheFollowing"
    ],
    "allowedOSes": {
      "chrome": false,
      "android": false,
      "webClient": false,
      "iOS": false,
      "linux": false,
      "mac": false,
      "wyse": false,
      "windows": false
    }
  },
  "iPs": {
    "enabled": false,
    "matchingMode": [
      "0 = IsNotOneOfTheFollowing",
      "1 = IsOneOfTheFollowing"
    ],
    "allowedIPs": {
      "iPv4s": [
        {
          "from": "text",
          "to": "text"
        }
      ],
      "iPv6s": [
        {
          "from": "text",
          "to": "text"
        }
      ]
    }
  },
  "hardwareIDs": {
    "enabled": false,
    "matchingMode": [
      "0 = IsNotOneOfTheFollowing",
      "1 = IsOneOfTheFollowing"
    ],
    "members": [
      {
        "hardwareID": "text"
      }
    ]
  },
  "access": [
    "0 = DenyCriteriaWhen",
    "1 = AllowCriteriaWhen"
  ],
  "devices": {
    "enabled": false,
    "matchingMode": [
      "0 = IsNotOneOfTheFollowing",
      "1 = IsOneOfTheFollowing"
    ],
    "members": [
      {
        "client": "text"
      }
    ]
  }
}

const response = await fetch('/api/MFA/Safenet', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json; api-version=1.0"
    },
    body: JSON.stringify({
      "name": "text",
      "otpServiceURL": "text"
    }),
});
const data = await response.json();

{
  "adminCreate": "text",
  "adminLastMod": "text",
  "timeCreate": "2024-11-07T10:03:13.879Z",
  "timeLastMod": "2024-11-07T10:03:13.879Z",
  "name": "text",
  "description": "text",
  "enabled": false,
  "type": [
    "1 = Deepnet",
    "2 = SafeNet",
    "3 = Radius",
    "4 = AzureRadius",
    "5 = DuoRadius",
    "6 = FortiRadius",
    "7 = TekRadius",
    "8 = GAuthTOTP",
    "9 = TOTP",
    "10 = MicrosoftTOTP",
    "11 = EmailOTP"
  ],
  "inheritDefaultCriteriaSettings": false,
  "criteria": {
    "securityPrincipals": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "account": "text",
          "type": [
            "1 = User",
            "2 = Group",
            "3 = ForeignSecurityPrincipal",
            "4 = Computer"
          ],
          "sid": "text"
        }
      ]
    },
    "gateways": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "gatewayIP": "text"
        }
      ]
    },
    "oSs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "allowedOSes": {
        "chrome": false,
        "android": false,
        "webClient": false,
        "iOS": false,
        "linux": false,
        "mac": false,
        "wyse": false,
        "windows": false
      }
    },
    "iPs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "allowedIPs": {
        "iPv4s": [
          {
            "from": "text",
            "to": "text"
          }
        ],
        "iPv6s": [
          {
            "from": "text",
            "to": "text"
          }
        ]
      }
    },
    "hardwareIDs": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "hardwareID": "text"
        }
      ]
    },
    "access": [
      "0 = DenyCriteriaWhen",
      "1 = AllowCriteriaWhen"
    ],
    "devices": {
      "enabled": false,
      "matchingMode": [
        "0 = IsNotOneOfTheFollowing",
        "1 = IsOneOfTheFollowing"
      ],
      "members": [
        {
          "client": "text"
        }
      ]
    }
  },
  "authMode": [
    "0 = MandatoryForAllUsers",
    "1 = CreateTokenForDomainAuthenticatedUsers",
    "2 = UsersWithSafeNetAcc"
  ],
  "otpServiceURL": "text",
  "userRepository": "text",
  "tmsWebApiURL": "text"
}