Step 3: Valdiate the OTP

POST {{HOST}}/admin/v1/MyAuthenticationFactorValidator

This step validates the user’s EMAIL enrollment in a POST request to the /admin/v1/MyAuthenticationFactorValidator endpoint.

The client must include the following attributes:

otpCode: the code received by the user
deviceId: received in the Step 2 response
requestId: received in the Step 2 response

In the response, the attribute mfaStatus:ENROLLED indicates that user has enrolled for MFA. The preferredAuthenticationFactor attr indicates the factor set as the preferred method. in this case, it is EMAIL.

Request Body

{"schemas"=>["urn:ietf:params:scim:schemas:oracle:idcs:AuthenticationFactorValidator"], "deviceId"=>"bcb65790a29143ca960fa67fb530da63", "requestId"=>"f8ee0085-1091-4eb3-b1d4-657ea6e1f3b7o-o1541112590", "otpCode"=>"720335", "authFactor"=>"EMAIL", "scenario"=>"ENROLLMENT"}

HEADERS

Key	Datatype	Required	Description
`Content-Type`	string
`Authorization`	string

RESPONSES

status: Created

{&quot;schemas&quot;:[&quot;urn:ietf:params:scim:schemas:oracle:idcs:AuthenticationFactorValidator&quot;],&quot;deviceId&quot;:&quot;bcb65790a29143ca960fa67fb530da63&quot;,&quot;requestId&quot;:&quot;f8ee0085-1091-4eb3-b1d4-657ea6e1f3b7o-o1541112590&quot;,&quot;otpCode&quot;:&quot;720335&quot;,&quot;authFactor&quot;:&quot;EMAIL&quot;,&quot;scenario&quot;:&quot;ENROLLMENT&quot;,&quot;meta&quot;:{&quot;resourceType&quot;:&quot;MyAuthenticationFactorValidator&quot;,&quot;location&quot;:&quot;https://example.identiycloud.com/admin/v1/MyAuthenticationFactorValidator&quot;},&quot;status&quot;:&quot;SUCCESS&quot;,&quot;displayName&quot;:&quot;joe.bloggs@example.com&quot;,&quot;mfaStatus&quot;:&quot;ENROLLED&quot;,&quot;mfaPreferredDevice&quot;:&quot;bcb65790a29143ca960fa67fb530da63&quot;,&quot;mfaPreferredAuthenticationFactor&quot;:&quot;EMAIL&quot;,&quot;securityQuestionsPresent&quot;:false,&quot;devicesCount&quot;:1}