Script 2: Supporting Server Failover When Using RSA SecurID as External Passcode Validation Service

This script performs the following tasks:

Sets a property that allows external passcode validation if the user is a member of a specific group.
Tries out the set RADIUS destinations until one validates the passcode and informs the user about the log-on result.

#include SAP;
#include SAP_util_rsa;

function onFirstStageLogin(config, context, result){
    var loginInfo = context.getLoginInfo();
    if (loginInfo.getUser().isMemberOfGroup("GRUP.PRIVATE_DATASOURCE.un:RSA_Users", true)) {
        config.setProperty("otp.use.external.passcode.validation", "yes");
    }
}
function validatePasscode(config, context, result, username, passcode) {
    var destinations = ["RADIUSDestination1", "RADIUSDestination2", "RADIUSDestination3"];
    SAP.util.rsa.PasscodeValidator.validate(config, context, result, username, passcode, destinations);
}