QR Code login

This topic describes how to enable the option for users to log in to the CyberArk Identity by scanning a Quick Response (QR) Code with an enrolled mobile device.

QR codes offer a secure and convenient way for your users to access the CyberArk Identity. After a user successfully scans the QR code, they proceed to the next challenge defined in the authentication profile. If QR Code is selected as an authentication mechanism in the next challenge, the challenge is considered successful based on the previous QR Code scan and the user is logged in. If you have not defined additional challenges in an authentication profile, the user is logged in. In addition, you can use QR Codes to enable users with enrolled mobile devices to bypass other authentication mechanisms - see Create authentication profiles for more information.

Users must have an enrolled iOS or Android device with version 20.7 or later of the CyberArk Identity mobile app application installed to successfully scan the QR code.

To enable QR Code login

  1. In the Identity Administration portal, go to Settings > Authentication > Security Settings, then select Enable QR code based user identification on login screen.

  2. Click Save.

    Users now have the option to scan a QR Code on the login screen.

    You can require user's to pass their device's native biometric authentication before scanning the QR code. Refer to mobile security settings for more information.