OAAM Shows New Digital Fingerprint For Same Device Using Different Wireless Provider
(Doc ID 1373478.1)
Last updated on SEPTEMBER 24, 2019
Applies to:Oracle Adaptive Access Manager - Version 10.1.4.5.0 to 10.1.4.5.0 [Release 10g]
Information in this document applies to any platform.
Goal of this document is to describe how using different wireless providers (or ISPs - internet service providers) from the same device (computer, mobile) affects the digital fingerprinting (FP).
Here's an example:
<USER1> logged in after the cutover to <APPLICATION1> and was prompted with a question that <USER1> did not believe to have originally answered. <USER1>'s OAAM profile was then locked after 3 failed attempts. A case was completed in ARM to reset <USER1> question set. Once <USER1> new questions were answered <USER1> checked the safe device checkbox and was successfully authenticated.
2nd attempt (same device) - <USER1> was prompted with a challenge question, and clicked safe device once <USER1> answered successfully.
3rd attempt (same device but using ISPs) - <USER1> was prompted with a challenge question and clicked safe device.
4th attempt (same device using ISPs) - <USER1> was not prompted with a challenge.
5th attempt (same device after removing <USER1>'s ISP) - <USER1> was prompted with a question.
All these tests were done from the same laptop. The only difference would be connection to the network over <USER1> wireless network card versus connection to the network over <USER1>'s ISPs. Each would provide a different MAC Address, but I don't see any documentation that says MAC Address is part of the Digital Fingerprint or the Flash cookie.
In ARM <USER1> Browser FP ID, remains the same. <USER1> Digital FP ID shows different, even though when I click on it and compare the parameters of it, they are identical.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document