LoginTC no longer supports Drupal.
The LoginTC Drupal module adds an additional step to user authentication using LoginTC two-factor authentication. After successfully entering a username and password, the user’s mobile device receives a LoginTC request (via push notifications) to approve/deny the authentication request. The request also includes useful information (e.g. IP address of the browser) to help the user determine if it’s a legitimate login request.
Before proceeding, please ensure you have the following:
Create a LoginTC domain for your Drupal installation. The LoginTC domain will contain your users’ LoginTC tokens and token unlocking policies.
Configure the module to connect with LoginTC Cloud.
Configure how the Drupal module connects with LoginTC.
The 64-character organization API key is found on the LoginTC administration panel on the Settings page
The 40-character domain ID is found on the Domain Settings page. To go the Domain Settings page, click on the Domains tab, then click on your newly-created domain, then click on the Settings button.
Leave the API Host as
Number of seconds to allow for an authentication request to be approved. A good value to use is between
Only users belonging to the selected Drupal roles will be required to authenticate with LoginTC. We recommend that you create a
LoginTC role and apply it to a test user before rolling it out to more users.
Request attributes appear on the LoginTC request view and help the user to determine if the authentication request is a legitimate one or not. Currently, the only supported domain attribute is the browser’s IP Address.
Users belonging to the selected roles on the LoginTC module configuration page will be presented an additional step to authenticate with LoginTC. In order to authenticate, the user must be created on the LoginTC administration panel and have the LoginTC token provisioned on their smart device.
Users and their tokens can be managed in many ways:
Your usernames in Drupal must match the usernames in LoginTC.
Your users enter their first factor (username & password) normally as they always did.