Use the POST /Authentication/Password/Reset
endpoint for requesting a one-time password (OTP) for MFA. After a successful initial authentication using username
and password
, the client sends a request to this endpoint, which triggers the server to create a time-limited OTP and deliver it through a pre-configured method (e.g., SMS, email). You must then provide the received OTP as part of the authentication process to verify your identity. This additional security layer helps protect your account against unauthorized access, even if your primary credentials are compromised.
OK
Bad Request
Unauthorized access
Access forbidden
Resource was not found
Conflict.
Too Many Requests
{- "userCredentials": {
- "username": "joeblow@acme.com",
- "deviceId": "A-10000"
}, - "otpReference": "string"
}
{- "otpResponse": {
- "otpStatus": "Active"
}, - "cryptoKeys": {
- "deviceEncryptionKey": "7625e224dc0f0ec91ad28c1ee67b1eb96d1a5459533c5c950f44aae1e32f2da3",
- "transactionEncryptionKey": "aafeeba6959ebeeb96519d5dcf0bcc069f81e4bb56c246d04872db92666e6d4b"
}
}