The security of a citizen's information is critical to customers. We recommend that all customers use the strongest security strategies available to secure their clients' information. Multi-factor authentication is one such strategy that can ensure that a citizen's account cannot be easily accessed through stolen credentials or weak passwords.
The Universal Access Responsive Web Application has been verified to work with third-party authentication solutions that provide multi-factor authentication flows through the SAML protocol. You can configure the application to delegate the entire authentication process to a third-party solution. A third-party solution can provide the login screens and multi-factor authentication challenges before authenticating the user with the service provider (Cúram) and then redirecting back to the user's account in the Universal Access application.
The following steps provide a working example of an implementation of multi-factor authentication through a third-party solution by using either Auth0 or KeyCloak as an identity provider.